How to make this work with my Roku Smart TV? about pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs HOT 5 OPEN

Best practice is to connect your router to the pi-hole instead of every device.

from pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs.

Yeah, that doesn't seem to work though. I lose internet connectivity when I change my DNS to the reserved Google Cloud IP.

from pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs.

Do you made your gcp pihole public? Don't do this. Please refer to https://www.reddit.com/r/selfhosted/comments/a3eym1/pihole_on_a_public_server_good_bad/.

Is the VPN connection between your router and the gcp pihole working proper?

from pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs.

I did not deviate from the instructions at all.

There is no VPN connection between my router and gcp pihole.

On my phone, I'm using the wireguard VPN. On the router, it looks like I have only a tool to make my home network a VPN for when I'm not home, but not to enable a VPN that applies to the devices within my home network. I've done a little more research and it seems OpenWRT would work, but I'm wary of installing a custom firmware on a router that otherwise works very well for me, since low-skill with networking. The hardest thing I've ever done (before this) is turn my router into an AP, and connect a wireless printer to it.

I'm guessing the risk of disabling the VPN and making the pihole public is because then a bad actor could access the server, reprogram it, and hijack/hack me next time I connect, right?

Attached is a photo of the VPN settings page on my router.

from pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs.

Well old thread, but might be useful for others.

I'm guessing the risk of disabling the VPN and making the pihole public is because then a bad actor could access the server, reprogram it, and hijack/hack me next time I connect, right?

Well, the main risk is that everyone can use your server as their DNS resolver. It will get a lot of requests and you run out from the Google Cloud free tier limits.
What you described is also possible, but requires some security vulnerabilities in Pi-Hole.

Other possible issues, like server being used for DDoS attacks:
https://developers.google.com/speed/public-dns/docs/security

from pi-hole-on-google-compute-engine-free-tier-with-full-tunnel-and-split-tunnel-wireguard-vpn-configs.