Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

How to make AdGuard only accessible via VPN and or private network

Scheduled Pinned Locked Moved AdGuard Home
5 Posts 2 Posters 447 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • 32463 Offline
    32463 Offline
    3246
    wrote on last edited by
    #1

    Hello folks.

    I'm struggling with understanding how to lock down AdGuard to only allow clients via VPN or from permitted networks or even clients.

    I found a helpful guide here but not sure how to implement it on a Cloudron box hosted in a DC (Hetzner VM in my case):

    https://github.com/trinib/AdGuard-WireGuard-Unbound-DNScrypt/discussions/43

    I don't want to brick my server as it's running important services I rather not have to restore 😉

    Visit https://www.bebravernow.com for more

    girishG 1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    replied to 3246 on last edited by
    #2

    @3246 have you seen https://docs.cloudron.io/apps/openvpn/#custom-dns-server already? You just have to set the OpenVPN DNS to Adguard home .

    32463 1 Reply Last reply
    1
  • 32463 Offline
    32463 Offline
    3246
    replied to girish on last edited by
    #3

    @girish yup 🙂 It's pointing to my public IP. Should it be an internal one?

    I want to lock down the DNS, so I can avoid Hetzner's abuse warnings and keep non-family traffic out 😉

    Visit https://www.bebravernow.com for more

    girishG 1 Reply Last reply
    0
  • girishG Offline
    girishG Offline
    girish Staff
    replied to 3246 on last edited by
    #4

    @3246 Pointing to the public IP is correct... For the locking down of DNS, does Hetzner have a Cloud firewall or equivalent ? Maybe you can white list access to port 53 by IP?

    32463 1 Reply Last reply
    1
  • 32463 Offline
    32463 Offline
    3246
    replied to girish on last edited by
    #5

    @girish thanks. Yes, it was actually easier than my mind made it out to be! I just opened the ports I needed and set 53 only for the networks I wanted.

    Visit https://www.bebravernow.com for more

    1 Reply Last reply
    1

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login

  • Don't have an account? Register

  • Login or register to search.