From f23093d8dc61314434cb942ac1002dc45d388d73 Mon Sep 17 00:00:00 2001
From: Thomas Kleinendorst <thomas@kleinendorst.info>
Date: Mon, 15 Apr 2024 10:20:02 +0200
Subject: [PATCH] Add UDP forwarding from Nginx

This is working locally, I can resolve addresses. But there still
seems to be another problem in that Windows is timing out when setting
the Pi as the DNS server.
---
 roles/pi-hole/files/dns_foward.conf |  7 +++++++
 roles/pi-hole/tasks/main.yml        | 18 ++++++++++++++++++
 2 files changed, 25 insertions(+)
 create mode 100644 roles/pi-hole/files/dns_foward.conf

diff --git a/roles/pi-hole/files/dns_foward.conf b/roles/pi-hole/files/dns_foward.conf
new file mode 100644
index 0000000..a324be6
--- /dev/null
+++ b/roles/pi-hole/files/dns_foward.conf
@@ -0,0 +1,7 @@
+stream {
+     server {
+         listen 53 udp;
+         proxy_pass 127.0.0.1:5053;
+         proxy_responses 0;
+     }
+ }
diff --git a/roles/pi-hole/tasks/main.yml b/roles/pi-hole/tasks/main.yml
index b7f5e54..e5d9d38 100644
--- a/roles/pi-hole/tasks/main.yml
+++ b/roles/pi-hole/tasks/main.yml
@@ -74,6 +74,24 @@
 - name: Debug
   ansible.builtin.debug:
     msg: "Don't forget to manually add a DNS record for pi-hole.kleinendorst.info pointing to: {{ ansible_facts['default_ipv4']['address'] }}."
+- name: Setup udp port forwarding (53 > 5053) in nginx
+  become: true
+  ansible.builtin.blockinfile:
+    path: /etc/nginx/nginx.conf
+    insertbefore: '^http \{$'
+    block: |
+      stream {
+        server {
+          listen 53;
+          proxy_pass 127.0.0.1:5053;
+        }
+
+        server {
+            listen 53 udp;
+            proxy_pass 127.0.0.1:5053;
+        }
+      }
+  notify: Restart Nginx
 # - name: Add forwarding rules for ufw
 #   become: true
 #   ansible.builtin.blockinfile: