Brand spanking new to networking and I’m still using at&t router/modem. I have installed Pi-hole, Wireguard in a docker container on a Raspberry PI 3 model B.
When I connect via VPN Server, internet does not connect on my MacBook Pro, so after little digging found out I’m missing PIVPN setup. I created 2 different config files for Full tunnel & Split tunnel
Question1: not sure what ip needs to be in allowed ip section…
Question 2: should I run Pi-Hole in same docker container or create separate?
Full tunnel and split tunnel is all defined by the allowed IP.
What you are defining is what specific address will be accessible though the WireGuard tunnel.
The default of 0.0.0.0/0 means that all IPv4 will tunnel through WireGuard. This will allow access to your home network and any public website you visit will go through your home internet connection. This is a full tunnel.
Split tunnel would be putting anything for allowed IPs other than above. This is usually helpful if your upload speed at home is limited. For example if you just wanted to access your home network though WireGuard you would put your home sub net something like 192.168.0.0/24 or whatever yours is. This is saying that if you access anything ok that subnet it will go though WireGuard but anything else would go through the devices local internet connection.
This is particularly useful if you want to use Pihole as your dns server but don’t want to be limited by your upload speed for internet connection. In this configuration you can set the allowed IP and dns server to your piholes IP. This way dns lookups go through WireGuard and pihole but website access does not.