Pihole as DNS server for Peplink B1 5G roter with multiple VLANS

Kumar_Sam · February 2, 2026, 2:09pm

Hi , I am a new peplink B1 5G router user . I am a new bee in the networking too .

I am trying to do the below

In the router I have 4 VLANS as below
VLAN10 : Main
VLAN20 : Security
VLAN30: IoT
VLAN40 : Guest

I want to use a pihole (raspberry pi in VLAN30 ) as DNS server for all my VLANs.

I tried a lot and I still didn’t able to make it work .

I have Inter-VLAN routing enabled across all VLANs
I have the DNS Servers ( in the DHCP config ) is pointing to the Pi static IP
I have outbound Firewall rules set for UDP+TCP from VLAN30 to reach any Destination on port 53
I have Default outbound is allowed from any to Any
I have inbound rule set to Block for any UDP+TCP to reach raspberry pi IP on port 53
Default Inbound rule for any to any is Denied
I have internal Network firewall to allow All UDP+TCP to reach pihole on port 53
8.Default Internal Network firewall rule is Denied for any to any
in the pihole under DNS Setting , Its marked as “Permit all origins”

I am still getting no internet connection in the VLANs

MarceloBarros · February 2, 2026, 5:57pm

Hi, @Kumar_Sam

About your questions… my answer.

1: Okay
2: Using NSLOOKUP/DIG, it is resolving names/domains?
3: By default… It is allowed from any / to any.
4: okay
5: Internal Network Firewall Rules? blocking?!?!
6: okay… inbound firewall rules.
7: please… change your rules to allow… Maybe you are doing a wrong setup.
8: okay

Barry_Twycross1250 · February 3, 2026, 12:28am

First question is are you having DNS issues, or transit issues. A ping to a numeric IP will tell you if you have transit or not. (ping 8.8.8.8 is a handy one.)

if it is a DNS issue, I’d be thinking of doing packet captures to see if the packets are getting to the pi hole, and back, or getting lost somewhere else.

I’m also wondering why you need the pi hole, the B1 DNS capabilities are pretty good.

soylentgreen · February 3, 2026, 12:48am

Here’s how I would set this up:

on Network/WAN/WAN Connection Settings, set DNS Servers to the IP of your PiHole.
On Network/LAN/Network Settings/DNS Proxy Settings:

Enable: yes
DNS Caching: yes
Include Google Public DNS Servers: ??? If you want DNS to keep working if your PiHole crashes, then turn this on. Otherwise, keep it off.

Disable inter-VLAN routing

This is a much simpler approach:

the Peplink becomes the DNS Proxy, intercepting and referring all DNS request to the PiHole
no firewall rules are needed.

However, this means that all VLANs (including your Main one) use the PiHole. If you wanted to have different DNS for different VLANs, this wouldn’t work.

Can you clarify what you want?

Kumar_Sam · February 4, 2026, 3:45am

Thanks . I had fixed it by updating the firewall rules for Internal Firewall access .

Kumar_Sam · February 4, 2026, 3:49am

Yes - Internal Network Firewall rules were blocking it .

Can i please check what are the pros and cons of " Enabling Inter-VLAN routing " for all VLANs ?

Does it expose VLANs with compromised security ?
When is the particular occasion we need it ?
Does firewall prevent any gaps coming from #1 ?

MarceloBarros · February 4, 2026, 8:11am

Hi, @Kumar_Sam
Please…
Can you draw your topology?
and describe what a kind of data traaffic you will need between vlans?
This way… We (Forum) can check what kind of rules you will need.

Kumar_Sam · February 5, 2026, 7:06am

MarceloBarros · February 5, 2026, 9:54am

Hi…

Thank you very much for your draw…

Have you setup this?

to redirect all DNS request to your pi-hole.