Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    How to make AdGuard only accessible via VPN and or private network

    AdGuard Home
    2
    5
    222
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • 3246
      3246 last edited by

      Hello folks.

      I'm struggling with understanding how to lock down AdGuard to only allow clients via VPN or from permitted networks or even clients.

      I found a helpful guide here but not sure how to implement it on a Cloudron box hosted in a DC (Hetzner VM in my case):

      https://github.com/trinib/AdGuard-WireGuard-Unbound-DNScrypt/discussions/43

      I don't want to brick my server as it's running important services I rather not have to restore 😉

      Visit https://www.axelsegebrecht.com for more about me

      girish 1 Reply Last reply Reply Quote 0
      • girish
        girish Staff @3246 last edited by

        @3246 have you seen https://docs.cloudron.io/apps/openvpn/#custom-dns-server already? You just have to set the OpenVPN DNS to Adguard home .

        3246 1 Reply Last reply Reply Quote 1
        • 3246
          3246 @girish last edited by

          @girish yup 🙂 It's pointing to my public IP. Should it be an internal one?

          I want to lock down the DNS, so I can avoid Hetzner's abuse warnings and keep non-family traffic out 😉

          Visit https://www.axelsegebrecht.com for more about me

          girish 1 Reply Last reply Reply Quote 0
          • girish
            girish Staff @3246 last edited by

            @3246 Pointing to the public IP is correct... For the locking down of DNS, does Hetzner have a Cloud firewall or equivalent ? Maybe you can white list access to port 53 by IP?

            3246 1 Reply Last reply Reply Quote 1
            • 3246
              3246 @girish last edited by

              @girish thanks. Yes, it was actually easier than my mind made it out to be! I just opened the ports I needed and set 53 only for the networks I wanted.

              Visit https://www.axelsegebrecht.com for more about me

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Powered by NodeBB