Pi-hole has become the cornerstone of my homelab's DNS infrastructure. To ensure maximum uptime, I transitioned to a High Availability (HA) cluster consisting of three Pi-hole instances:
- Two instances running on separate nodes of my Proxmox cluster.
- A third instance running on my Proxmox cluster's QDevice (Raspberry Pi).
While keeping DNS synchronized across these nodes is relatively simple (using tools like Gravity Sync), achieving true HA for DHCP proved to be a much greater challenge.
DNS HA is built into the protocol; you can push multiple DNS server IPs to clients, and they will automatically failover if one is unreachable. However, DHCP does not work this way.
- Redundancy vs. Conflict: You cannot simply leave three DHCP servers active on the same subnet without risking IP conflicts and "race conditions" where clients receive unpredictable configurations.
- The Single Point of Failure: I migrated my DHCP service from my router to Pi-hole to gain better visibility and control. However, this created a new problem: if the primary Pi-hole instance (where the DHCP server lives) goes down for maintenance or due to a hardware failure, the entire network loses its DHCP service.
I developed this application to act as the "brain" of the cluster. Instead of manual intervention, this controller monitors the availability of all 3 (or 2) Pi-hole instances and orchestrates the DHCP service based on a strict priority logic: Primary → Secondary → Tertiary.
- Intelligent Failover: If the Primary node fails, the controller automatically enables the DHCP server on the Secondary node.
- Automatic Fallback: As soon as a higher-priority node comes back online, the controller gracefully disables DHCP on the lower-priority node and restores the service to the preferred instance.
Note: This is a pre-release. This tool was built to solve a specific need in my own network architecture. While it has been tested thoroughly in my environment, homelab setups vary wildly. I am sharing this with the community in hopes that others find it useful.
Feedback, issue reports, and Pull Requests are highly encouraged!
- Centralized Control: A single service manages the DHCP status of all your Pi-hole instances.
- Hierarchical Failover Logic: Defines a priority among servers (Primary > Secondary > Tertiary). DHCP will only be active on the highest-priority server that is reachable.
- Automatic Failback: If a higher-priority server comes back online, it automatically resumes the role of the DHCP server, disabling DHCP on other servers.
- Flexible Support (2 or 3 servers): The script automatically detects whether you are using two or three Pi-hole servers based on your configuration.
- Simple Configuration: All settings are managed through a
.envfile. - Deploy with Docker Compose: Easy to install and manage via Docker Compose on a dedicated VM.
- Docker and Docker Compose: Installed on the VM that will host the controller service.
- Functional Pi-hole Instances (v6.0+): All Pi-holes must be configured and accessible over the network from the controller's VM.
- Pi-hole App Passwords: For each Pi-hole instance, you must create a dedicated App Password with write permissions (see Pi-hole v6 Setup).
Pi-hole v6 introduced a more secure API that requires App Passwords for third-party integrations. To allow this controller to change DHCP settings, follow these steps for each Pi-hole instance:
- Log in to your Pi-hole web interface.
- Navigate to Settings > API.
- Scroll down to the App Passwords section.
- Click Add new password.
- Give it a name (e.g.,
DHCP-Controller). - Crucial: Check the box for "App sudo" (or "Write access" / "Full control"). Without this, the controller will be able to read the status but cannot enable or disable the DHCP server.
- Save and copy the generated password. You will need this for your
.envfile.
-
Clone the Repository:
git clone https://github.com/marcorotella/pihole-dhcp-controller.git cd pihole-dhcp-controller -
Create the
.envconfiguration file:- Copy the
.env.examplefile to.env:cp .env.example .env
- Open the
.envfile with a text editor and fill in the variables:# --- Pi-hole DHCP Controller Configuration --- # Check interval in seconds CHECK_INTERVAL=60 # --- Primary Pi-hole (Priority 1 - Required) --- PRIMARY_PIHOLE_IP=YOUR_PRIMARY_IP # Use the App Password generated in the Pi-hole UI PRIMARY_PIHOLE_TOKEN=YOUR_PRIMARY_APP_PASSWORD # --- Secondary Pi-hole (Priority 2 - Required) --- SECONDARY_PIHOLE_IP=YOUR_SECONDARY_IP SECONDARY_PIHOLE_TOKEN=YOUR_SECONDARY_APP_PASSWORD # --- Tertiary Pi-hole (Priority 3 - Optional) --- # Leave these two variables empty or comment them out for a 2-server setup. TERTIARY_PIHOLE_IP= TERTIARY_PIHOLE_TOKEN=
- Important: Make sure to use the App Passwords (not your login password) and ensure they have app_sudo enabled.
- Copy the
-
Start the Service with Docker Compose:
- From the same directory where
docker-compose.ymland.envare located, run:docker-compose up -d --build
- This command will build the Docker image (if not already built or if there are changes) and start the service in the background.
- From the same directory where
The dhcp_controller runs a check cycle every CHECK_INTERVAL seconds:
- Check the status of all Pi-holes: It checks the reachability of the Primary, Secondary, and Tertiary (if configured) servers.
- Determine the Active DHCP Server:
- If the Primary is online, it will be the active DHCP server.
- Otherwise, if the Secondary is online, it will be the active DHCP server.
- Otherwise, if the Tertiary is online, it will be the active DHCP server.
- If no Pi-hole is online, no DHCP server will be activated.
- Apply Changes:
- It enables DHCP on the server chosen as "active".
- It disables DHCP on all other online servers.
This logic ensures that the DHCP service is always managed by the highest-priority available server and allows for automatic service restoration on the primary server as soon as it comes back online.
To monitor the controller's operation and view logs in real-time:
docker-compose logs -f