Yes. Here are the relevant lines in AdGuardHome.yaml file that you need to change:
bind_host: 0.0.0.0 bind_port: 38139 tls: enabled: true server_name: yourdomain.name force_https: false # this lets NPM handle HTTPS port_https: 0 # this disables AGH's DoH server allow_unencrypted_doh: true # allows unencrypted comm between NPM and AGH certificate_path: /cert/fullchain.cer # only used for DoT private_key_path: /cert/yourdomain.name # only used for DoT
Edit: setting any port number to 0 disables it. oh and manage certificates through NPM, unless you need DoT, in that case you will have to give AGH the certs too
Ok, I'll try it, so by implementing this config Won't I be able to use DoH? only DoT?
If I give the certs to AGH then will it renew them automatically upon expiration or will I have to manually renew each time?
So, just to jump in here and ask a few questions:
(For context, I'm running both AGH and NPM as docker containers)
"bind_host" and "bind_port" don't appear to be options in the AGH yaml anymore. I've tried manually adding them but they seem to just disappear when I launch AGH. So do you have ideas for what I need to do for that? I was able to set the other options you mentioned.
I guess in general I'm confused as to a lot of the settings in NPM. I saw below you said you don't actually use NPM, so I understand if you can't answer, hopefully you can at least point me in the right direction. You seem knowledgeable about this, and I'm very new here lol, learning a lot.
When setting my proxy host in NPM:
For scheme, I imagine I put "https"? The other option is "http".
For "Forward Hostname / IP", is it correct that this should be the local IP address of my AGH Docker container? Or is it something else I'm missing, like the local IP of my server itself?
For "Forward Port", what does this need to be set to? I imagine its the same port I would set to "bind_port" per your instructions above, but since that isn't working for me, I'm really not sure what it needs to be.
Do I need to put anything under "Custom locations" for the proxy host as well? (i.e. for /dns-query)?
What about for the Advanced section/Custom Nginx Configuration, do I need to put anything there either?
If you can't answer these, then its no problem at all, I completely understand. I would just appreciate any help you could offer on this, still learning how all of this works, and been messing with it basically all day. I've got DOT working, so that's a start. I feel like I'm really close to getting this, I'm just missing something.
If I use nginx as a proxy manager, could I just point the certificate path and the private key path directly to where it's stored in nginx? This way I won't have to manually update the certificate in adguard since nginx will automatically update.
We need to change Bind_port or port under dns
Hello! Sorry to revive this old thread, but I am also facing a similar issue and need your assistance.
I am running Adguard Home in a cloud VPS (Ubuntu Server+Docker+Nginx Proxy Manager) and would like to install Adguard Home using docker itself. I tried installing and everything works if I just browse through with the Public IP. But, I need to enable the DoH and DoT in this config and not really sure on how to accomplish that.
My AGH instance is running on port 85 and what are the settings that I need to change?
With your instruction on updating the bind_port, I must enter 85 there right? and also how should I configure the proxy host in NPM? Is it possible for you to send a screensnap on the proxy config window?
Would be really helpful if you guys could assist.