From 3d34878b8b25cec26cd8956dfb1d7da9700627f5 Mon Sep 17 00:00:00 2001 From: Michael Stanclift Date: Wed, 21 Oct 2020 19:38:55 +0000 Subject: [PATCH] Wiki --- CHANGELOG.md | 454 +++++++++++++++++++++++++++++++++++++++++++++++++++ README.md | 205 +++-------------------- 2 files changed, 478 insertions(+), 181 deletions(-) create mode 100644 CHANGELOG.md diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 0000000..e325c7c --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,454 @@ +# The Changelog + +## 3.1 + +### The Container Release + +The premise of this release was to focus on adding better support for Docker container instances of Pi-hole. This release also changes a lot of things about the requirements that Gravity Sync has always had, which were not running as the root user, and requiring that the script be run from the user's home directory. Those two restrictions are gone. + +You can now use a standard Pi-hole install as your primary, or your secondary. You can use a Docker install of Pi-hole as your primary, or your secondary. You can mix and match between the two however you choose. You can have Pi-hole installed in different directories at each side, either as standard installs or with container configuration files in different locations. Overall it's much more flexible. + +#### Docker Support + +- Only the [official Pi-hole managed Docker image](https://hub.docker.com/r/pihole/pihole) is supported. Other builds may work, but they have not been tested. +- If you are using a name for your container other than the default `pihole` in your Docker configuration, you must specify this in your `gravity-sync.conf` file. +- Smart Sync, and the associated push/pull operations, now will send exec commands to run Pi-hole restart commands within the Docker container. +- Your container configuration must expose access to the virtual `/etc/pihole` location to the host's file system, and be configured in your `gravity-sync.conf` file. + +**Example:** if your container configuration looked something like like `-v /home/vmstan/etc-pihole/:/etc/pihole` then the location `/home/vmstan/etc-pihole` would need to be accessible by the user running Gravity Sync, and be configured as the `PIHOLE_DIR` (or `RIHOLE_DIR`) in your `gravity-sync.conf` file. + +#### Installation Script + +- Detects the running instance of default Pi-hole Docker container image, if standard Pi-hole lookup fails. Pi-hole must still be installed prior to Gravity Sync. +- Changes detection of root vs sudo users, and adapts commands to match. You no longer need to avoid running the script as `root`. +- Only deploys passwordless SUDO components if deemed necessary. (i.e. Not running as `root`.) +- Now automatically runs the local configuration function on the secondary Pi-hole after execution. +- Deploys script via `git` to whatever directory the installer runs in, instead of defaulting to the user's `$HOME` directory. +- Gravity Sync no longer requires that it be run from the user's `$HOME` directory. + +#### Configuration Workflow + +- Overall, a simpler configuration function, as the online installer now checks for the dependencies prior to execution. +- New users with basic Pi-hole installs will only be prompted for the address of the primary (remote) Pi-hole, an SSH user and then the SSH password to establish a trusted relationship and share the keyfiles. +- Automatically prompts on during setup to configure advanced variables if a Docker installation is detected on the secondary (local) Pi-hole. +- Advanced users can set more options for non-standard deployments at installation. If you are using a Docker deployment of Pi-hole on your primary (remote) Pi-hole, but not the system running Gravity Sync, you will need to enter this advanced mode when prompted. +- Existing users with default setups should not need to run the config utility again after upgrading, but those with custom installs (especially existing container users) should consider it to adopt new variable names and options in your config files. +- Creates a BASH environment alias to run the command `gravity-sync` from anywhere on the system. If you use a different shell (such as zsh or fish) as your default this may need to be added manually. + +#### New Variables + +- `REMOTE_FILE_OWNER` variable renamed `RILE_OWNER` for consistency. +- `RIHOLE_DIR` variable added to set different Pi-hole directory for remote host than local. +- `DOCKER_CON` and `ROCKER_CON` variables added to specify different names for local and remote Pi-hole Docker containers. +- `PH_IN_TYPE` and `RH_IN_TYPE` variables allow you to to either standard or Docker deployments of Pi-hole, per side. +- `DOCKER_BIN` and `ROCKER_BIN` variables allow you to set non-standard locations for Docker binary files, per side. +- Adds all variables to `gravity-sync.conf.example` for easy customization. + +#### Removals + +- Support for `sshpass` has been removed, the only valid authentication method going forward will be ssh-key based. +- If you've previously configured Gravity Sync using `sshpass` you will need to run `./gravity-sync.sh config` again to create a new configuration file. + +#### Bug Killer + +- Lots of long standing little buggles have been squashed. + +#### Branding + +- I made a logo. + +Gravity Sync + +## 3.0 + +### The Breakout Release + +This release focuses on breaking out elements of the script from the main file into a collection of a dozen or so files located under the `includes/gs-*.sh` hirearchy. Seperating out allows new contributors to work on different parts of the script individually, provides an oppertunity to clean up and reorganize parts of the code, and hopefully provides less risk of breaking the entire script. + +This release also features a brand new installation script, including a host check for both the primary and secondary Pi-hole system. This should reduce frustration of users who are missing parts of the system requirements. This will also place a file in the sudoers.d file on both systems to make sure passwordless sudo is configured as part of the installation. + +Lastly, we adopts Pi-hole style iconography such as `✓ ✗ e ! ?` instead of `[ GOOD ]` in command output. + +Enjoy! + +#### 3.0.1 + +- `dev` function now automatically updates Gravity Sync after application. +- `dev` function pulls new branches down before prompting to select which one to update against. +- Minor shuffle of `gravity-sync.sh` contents. +- Clarify installation requirements in `README.md`. +- Fixes issues with permissions on `gravity.db` after push operations. +- Fixes missing script startup output during `dev` operation. + +#### 3.0.2 + +- Realigned EPS conduits, they overheat if you leave them pointed the same way for too long. +- Corrected error when running via crontab where includes directory was not properly sourced. + +## 2.2 + +### The Purged Release + +This release removes support for Dropbear SSH client/server. If you are using this instead of OpenSSH (common with DietPi) please reconfigure your installation to use OpenSSH. You will want to delete your existing `~/.ssh/id_rsa` and `~/.ssh/id_rsa.pub` files and run `./gravity-sync.sh configure` again to generate a new key and copy it to the primary Pi-hole. + +This release also adds the `./gravity-sync.sh purge` function that will totally wipe out your existing Gravity Sync installation and reset it to the default state for the version you are running. If all troubleshooting of a bad installation fails, this is the command of last resort. + +- Updates the remote backup timeout from 15 to 60, preventing the `gravity.db` backup on the remote Pi-hole from failing. (PR [#76](https://github.com/vmstan/gravity-sync/pull/76)) +- Adds uninstall instructions to the README.md file. (Basically, run the new `purge` function and then delete the `gravity-sync` folder.) +- I found a markdown spellcheck utility for Visual Studio Code, and ran it against all my markdown files. I'm sorry, I don't spell good. 🤷‍♂️ +- New Star Trek references. + +#### 2.2.1 + +- Corrects issue with Smart Sync where it would fail if there was no `custom.list` already present on the local Pi-hole. +- Adds Pi-hole default directories to `gravity-sync.conf.example` file. +- Adds `RIHOLE_BIN` variable to specify different Pi-hole binary location on remote server. + +#### 2.2.2 + +- Corrects another logical problem that prevented `custom.list` from being backed up and replicated, if it didn't already exist on the local Pi-hole. + +#### 2.2.3 + +- Adds variable to easily override database/binary file owners, useful for container deployments. (Thanks @dpraul) +- Adds variable to easily override Pi-hole binary directory for remote host, seperate from local host. (Thanks @dpraul) +- Rewritten `dev` option now lets you select the branch to pull code against, allowing for more flexibility in updating against test versions of the code. The `beta` function introduced in 2.1.5 has now been removed. +- Validates existance of SQLite installation on local Pi-hole. +- Adds Gravity Sync permissions for running user to local `/etc/sudoer.d` file during `config` operation. +- Adds `./gravity-sync.sh sudo` function to create above file for existing setups, or to configure the remote Pi-hole by placing the installer files on that system. This is not required for existing functional installs, but this should also negate the need to give the Gravity Sync user NOPASSWD permissions to the entire system. + +## 2.1 + +### The Backup Release + +A new function `./gravity-sync.sh backup` will now perform a `SQLITE3` operated backup of the `gravity.db` on the local Pi-hole. This can be run at any time you wish, but can also be automated by the `./gravity-sync.sh automate` function to run once a day. New and existing users will be prompted to configure both during this task. If can also disable both using the automate function, or just automate one or the other, by setting the value to `0` during setup. + +New users will automatically have their local settings backed up after completion of the initial setup, before the first run of any sync tasks. + +By default, 7 days worth of backups will be retained in the `backup` folder. You can adjust the retention length by changing the `BACKUP_RETAIN` function in your `gravity-sync.conf` file. See the `ADVANCED.md` file for more information on setting these custom configuration options. + +There are also enhancements to the `./gravity-sync.sh restore` function, where as previously this task would only restore the previous copy of the database that is made during sync operations, now this will ask you to select a previous backup copy (by date) and will use that file to restore. This will stop the Pi-hole services on the local server while the task is completed. After a successful restoration, you will now also be prompted to perform a `push` operation of the restored database to the primary Pi-hole server. + +It's suggested to make sure your local restore was successful before completing the `restore` operation with the `push` job. + +#### Dropbear Notice + +Support for the the Dropbear SSH client/server (which was added in 1.7.6) will be removed in an upcoming version of Gravity Sync. If you are using this instead of OpenSSH (common with DietPi) please reconfigure your installation to use OpenSSH. You will want to delete your existing `~/.ssh/id_rsa` and `~/.ssh/id_rsa.pub` files and run `./gravity-sync.sh configure` again to generate a new key and copy it to the primary Pi-hole. + +The `./gravity-sync.sh update` and `version` functions will look for the `dbclient` binary on the local system and warn users about the upcoming changes. + +#### 2.1.1 + +- Last release was incorrectly published without logic to ignore `custom.list` if request or not used. + +#### 2.1.2 + +- Corrects a bug in `backup` automation that causes the backup to run every minute during the hour selected. + +#### 2.1.5 + +Skipping a few digits because what does it really matter? + +- Implements a new beta branch, and with it a new `./gravity-sync.sh beta` function to enable it. This will hopefully allow new features and such to be added for test users who can adopt them and provide feedback before rolling out to the main update branch. +- Uses new SQLITE3 backup methodology introduced in 2.1, for all push/pull sync operations. +- `./gravity-sync.sh restore` lets you select a different `gravity.db` and `custom.list` for restoration. +- One new Star Trek reference. +- `./gravity-sync.sh restore` now shows recent complete Backup executions. + +#### 2.1.6 + +- Adds prompts during `./gravity-sync.sh configure` to allow custom SSH port and enable PING avoidance. +- Adds `ROOT_CHECK_AVOID` variable to advanced configuration options, to help facilitate running Gravity Sync with container installations of Pi-hole. (PR [#64](https://github.com/vmstan/gravity-sync/pull/64)) +- Adds the ability to automate automation. :mind_blown_emoji: Please see the ADVANCED.md document for more information. (PR [#64](https://github.com/vmstan/gravity-sync/pull/64)) + +(Thanks to [@fbourqui](https://github.com/fbourqui) for this contributions to this release.) + +#### 2.1.7 + +- Adjusts placement of configuration import to fully implement `ROOT_CHECK_AVOID` variable. +- Someday I'll understand all these git error messages. + +## 2.0 + +### The Smart Release + +In this release, Gravity Sync will now detect not only if each component (`gravity.db` and `custom.list`) has changed since the last sync, but also what direction they need to go. It will then initiate a `push` and/or `pull` specific to each piece. + +**Example:** If the `gravity.db` has been modified on the primary Pi-hole, but the `custom.list` file has been changed on the secondary, Gravity Sync will now do a pull of the `gravity.db` then push `custom.list` and finally restart the correct components on each server. It will also now only perform a sync of each component if there are changes within each type to replicate. So if you only make a small change to your Local DNS settings, it doesn't kickoff the larger `gravity.db` replication. + +The default command for Gravity Sync is now just `./gravity-sync.sh` -- but you can also run `./gravity-sync.sh smart` if you feel like it, and it'll do the same thing. + +This allows you to be more flexible in where you make your configuration changes to block/allow lists and local DNS settings being made on either the primary or secondary, but it's best practice to continue making changes on one side where possible. In the event there are configuration changes to the same element (example, `custom.list` changes at both sides) then Gravity Sync will attempt to determine based on timestamps on what side the last changed happened, in which case the latest changes will be considered authoritative and overwrite the other side. Gravity Sync does not merge the contents of the files when changes happen, it simply overwrites the entire content. + +New installs will use the `smart` function by default. Existing users who want to use this new method as their standard should run `./gravity-sync.sh automate` function to replace the existing automated `pull` with the new Smart Sync. This is not required. The previous `./gravity-sync.sh pull` and `./gravity-sync.sh push` commands continue to function as they did previously, with no intention to break this functionality. + +#### 2.0.1 + +- Fixes bug that caused existing crontab entry not to be removed when switching from `pull` to Smart Sync. [#50](https://github.com/vmstan/gravity-sync/issues/50) + +#### 2.0.2 + +- Correct output of `smart` function when script is run without proper function requested. +- Decided marketing team was correct about display of versions in `CHANGELOG.md` -- sorry Chris. +- Adds reference architectures to the `ADVANCED.md` file. +- Checks for RSYNC functionality to remote host during `./gravity-sync.sh configure` and prompts to install. [#53](https://github.com/vmstan/gravity-sync/issues/53) +- Move much of the previous `README.md` to `ADVANCED.md` file. + +## 1.8 + +### The Logical Release + +There is nothing really sexy here, but a lot of changes under the covers to improve reliability between different SSH client types. A lot of the logic and functions are more consistent and cleaner. In some cultures, fewer bugs and more reliability are considered features. Much of this will continue through the 1.8.x line. + +- SSH/RSYNC connection logic rewritten to be specific to client options between OpenSSH, OpenSSH w/ SSHPASS, and Dropbear. +- Key-pair generation functions rewritten to be specific to client options, also now works with no (or at least fewer) user prompts. +- SSHPASS options should be more reliable if used, but removes messages that SSHPASS is not installed during setup, if it's not needed and Redirects user to documentation. +- Adds custom port specification to ssh-copy-id and dropbearkey commands during configuration generation. +- Generally better error handling of configuration options. + +#### 1.8.1 + +- Detects if script is running as the root user or via `sudo ./gravity-sync.sh` and exits on error. [#34](https://github.com/vmstan/gravity-sync/issues/34) + +#### 1.8.2 + +- Corrects issue where `custom.list` file would not replicate if the file didn't exist locally, and there were no other changes to replicate. [#39](https://github.com/vmstan/gravity-sync/issues/39) + +#### 1.8.3 + +- Simplified method for input of automation frequency when running `./gravity-sync.sh automate` function. +- Now removes existing automation task from crontab, if it exists, when re-running `automate` function. +- Automation can be disabled by setting frequency to `0` when prompted. +- Adds `dev` tag to `./gravity-sync.sh version` output for users running off the development branch. + +## 1.7 + +### The Andrew Release + +#### Features + +- Gravity Sync will now manage the `custom.list` file that contains the "Local DNS Records" function within the Pi-hole interface. +- If you do not want this feature enabled it can be bypassed by adding a `SKIP_CUSTOM='1'` to your .conf file. +- Sync will be trigged during a pull operation if there are changes to either file. + +#### Known Issues + +- No new Star Trek references. + +#### 1.7.1 + +- There is a changelog file now. I'm mentioning it in the changelog file. So meta. +- `./gravity-sync.sh version` will check for and alert you for new versions. + +#### 1.7.2 + +This update changes the way that beta/development updates are applied. To continue receiving the development branch, create an empty file in the `gravity-sync` folder called `dev` and afterwards the standard `./gravity-sync.sh update` function will apply the correct updates. + +```bash +cd gravity-sync +touch dev +./gravity-sync.sh update +``` + +Delete the `dev` file and update again to revert back to the stable/master branch. + +#### 1.7.3 + +- Cleaning up output of argument listing +- Removes `beta` function for applying development branch updates. + +#### 1.7.4 + +- `./gravity-sync.sh dev` will now toggle dev flag on/off. No `touch` required, although it still works that way under the covers. Improvement of methods added in 1.7.2. +- `./gravity-sync.sh update` performs better error handling. +- Slightly less verbose in some places to make up for being more verbose in others. +- [DONE] has become [ OK ] in output. +- [INFO] header is now yellow all the way across. +- Tightens up verbiage of status messages. +- Fixes `custom.list` not being processed by `./gravity-sync.sh restore` function. +- Detects absence of `ssh` client command on host OS (DietPi) +- Detects absence of `rsync` client command on host OS (DietPi) +- Detects absence of `ssh-keygen` utility on host OS and will use `dropbearkey` as an alternative (DietPi) +- Changelog polarity reversed after heated discussions with marketing team. + +#### 1.7.5 + +- No code changes! +- Primary README now only reflect "The Easy Way" to install and configure Gravity Sync +- "The Less Easy Way" are now part of [ADVANCED.md](https://github.com/vmstan/gravity-sync/blob/master/ADVANCED.md) +- All advanced configuration options are outlined in [ADVANCED.md](https://github.com/vmstan/gravity-sync/blob/master/ADVANCED.md) + +#### 1.7.6 + +- Detects `dbclient` install as alternative to OpenSSH Client. +- Attempts to install OpenSSH Client if not found, and Dropbear is not alternative. +- Fix bug with `dropbearkey` not finding .ssh folder. +- Numerous fixes to accommodate DietPi in general. +- Fixes issue where `compare` function would show changes where actually none existed. +- [WARN] header is now purple all the way across, consistent with [INFO] as of 1.7.4. +- Fixes issue where `custom.list` would only pull if the file already existed on the secondary Pi-hole. +- One new Star Trek reference. + +#### 1.7.7 + +- `config` function will attempt to ping remote host to validate network connection, can by bypassed by adding `PING_AVOID='1'` to your `gravity-sync.conf` file. +- Changes some [INFO] messages to [WARN] where appropriate. +- Adds aliases for more Gravity Sync functions. +- Shows current version on each script execution. +- Adds time output to Aborting message (exit without change.) +- Includes parsing of functions in time calculation. +- Checks for existence of Pi-hole binaries during validation. +- Less chatty about each step of configuration validation if it completes. +- Less chatty about replication validation if it's not necessary. +- Less chatty about file validation if no changes are required. +- When applying `update` in DEV mode, the Git branch used will be shown. +- Validates log export operation. + +## 1.6 + +### The Restorative Release + +- New `./gravity-sync.sh restore` function will bring a previous version of the `gravity.db` back from the dead. +- Changes the way that Gravity Sync prompts for data input and how confirmation prompts are handled. +- Adds ability to override verification of 'push', 'restore' or 'config' reset, see `.example` file for details. +- Five new Star Trek references. +- New functions add consistency in status output. + +## 1.5 + +### The Automated Release + +- You can now easily deploy the task automation via crontab by running `./gravity-sync.sh automate` which will simply ask how often you'd like to run the script per hour, and then create the entry for you. +- If you've already configured an entry for this manually with a prior version, the script should detect this and ask that you manually remove it or edit it via crontab -e. I'm hesitant to delete existing entries here, as it could potentially remove something unrelated to Gravity Sync. +- Changes the method for pulling development branch updates via the 'beta' function. +- Cleanup of various exit commands. + +## 1.4 + +### The Configuration Release + +- Adds new `./gravity-sync config` feature to simplify deployment! +- Adds variables for SSH settings. +- Rearranges functions, which impacts nothing. +- All new and exciting code comments. +- No new Star Trek references. + +#### 1.4.1 + +- Adds variables for custom log locations to `gravity-sync.conf`, see `.example` file for listing. + +#### 1.4.2 + +- Will prompt to create new `gravity-sync.conf` file when run without an existing configuration. + +#### 1.4.3 + +- Bug fixes around not properly utilizing custom SSH key-file. + +## 1.3 + +### The Comparison Release + +1.3 should be called 2.0, but I'll resist that temptation -- but there are so many new enhancements! + +- Gravity Sync will now compare remote and local databases and only replicate if it detects a difference. +- Verifies most commands complete before continuing each step to fail more gracefully. +- Additional debugging options such as checking last cronjob output via `./gravity-sync.sh cron` if configured. +- Much more consistency in how running commands are processed in interactive mode. + +#### 1.3.1 + +- Changes [GOOD] to [DONE] in execution output. +- Better validation of initial SSH connection. +- Support for password based authentication using SSHPASS. + +#### 1.3.2 + +- MUCH cleaner output, same great features. + +#### 1.3.3 + +- Corrected Pi-hole bin path issue that cause automated sync not to reload services. + +#### 1.3.4 + +- Moves backup of local database before initiating remote pull. +- Validates file ownership and permissions before attempting to rewrite. +- Added two Star Trek references. + +## 1.2 + +### The Functional Release + +- Refactored process to use functions and cleanup process of execution. +- Does not look for permission to update when run. +- Cleanup and expand comments. + +#### 1.2.1 + +- Improved logging functions. + +#### 1.2.2 + +- Different style for status updates. + +#### 1.2.3 + +- Uses a dedicated backup folder for `.backup` and `.last` files. +- Copies db instead of moving to rename and then replacing to be more reliable. +- Even cleaner label status. + +#### 1.2.4 + +- Changes `~` to `$HOME`. +- Fixes bug that prevented sync from working when run via crontab. + +#### 1.2.5 + +- Push function now does a backup, on the secondary PH, of the primary database, before pushing. + +## 1.1 + +### The Pushy Release + +- Separated main purpose of script into `pull` argument. +- Allow process to reverse back using `push` argument. + +#### 1.1.2 + +- First release since move from being just a Gist. +- Just relearning how to use GitHub, minor bug fixes. + +#### 1.1.3 + +- Now includes example an configuration file. + +#### 1.1.4 + +- Added update script. +- Added version check. + +#### 1.1.5 + +- Added ability to view logs with `./gravity-sync.sh logs`. + +#### 1.1.6 + +- Code easier to read with proper tabs. + +## 1.0 + +### The Initial Release + +No version control, variables or anything fancy. It only worked if everything was exactly perfect. + +```bash +echo 'Copying gravity.db from HA primary' +rsync -e 'ssh -p 22' ubuntu@192.168.7.5:/etc/pihole/gravity.db /home/pi/gravity-sync +echo 'Replacing gravity.db on HA secondary' +sudo cp /home/pi/gravity-sync/gravity.db /etc/pihole/ +echo 'Reloading configuration of HA secondary FTLDNS from new gravity.db' +pihole restartdns reload-lists +``` + +For real, that's it. 6 lines, and could probably have be done with less. diff --git a/README.md b/README.md index facdc05..6a38b4a 100644 --- a/README.md +++ b/README.md @@ -4,24 +4,27 @@ What is better than a [Pi-hole](https://github.com/pi-hole/pi-hole) blocking ads via DNS on your network? That's right, two Pi-hole blocking ads on your network! -But if you have more than one Pi-hole in your network you'll want a simple way to keep the list configurations and local DNS settings identical between the two. That's Gravity Sync. +But if you have more than one Pi-hole in your network you'll want a simple way to keep the list configurations and local DNS settings identical between the two. That's Gravity Sync. With proper preparation it should only take a few minutes to install. Ideally you set up Gravity Sync and forget about it -- and in the long term, it would be awesome if the Pi-hole team made this entire script unnecessary. ## Features -Gravity Sync will: +Gravity Sync the `gravity.db` database which includes: -- Sync the Adlist database (allow/block list) configurations stored in `gravity.db` between multiple Pi-hole. -- Sync the Local DNS Settings stored in `custom.list` between multiple Pi-hole. -- Provide an easy way to keep this happening in the background. - -Ideally you set up Gravity Sync and forget about it -- and in the long term, it would be awesome if the Pi-hole team made this entire script unnecessary. +- Blocklist settings with status and comments. +- Domain whitelist and blacklist along with status with comments. +- Custom RegEx whitelist and blacklists. +- Clients and groups along with any list assignments. +- The Local DNS Settings feature in Pi-hole (These are stored in a separate `custom.list` file and this can optionally be disabled.) ### Limitations Gravity Sync will **not**: -- Overwrite individual Pi-hole specific settings such as the device's network configuration, admin/API passwords/keys, upstream DNS resolvers, etc. -- Keep DHCP settings or device leases synchronized. +- Overwrite or sync device specific Pi-hole settings such as the local network configuration. +- Overwrite or sync the Pi-hole admin/API passwords, nor does not leverage these at all. +- Overwrite or sync the upstream DNS resolvers, etc. +- Overwrite or sync DHCP settings or device leases synchronized. +- Overwrite or sync long term data, query logs, or statistics. ### Disclaimer @@ -29,178 +32,18 @@ Gravity Sync is not developed by or affiliated with the Pi-hole project. This is ## Setup Steps -1. Read the installation Requirements! -2. Prepare your Pi-hole hosts. -3. Install Gravity Sync to your secondary Pi-hole. -4. Configure your Gravity Sync installation. -5. Test your Gravity Sync install. -6. Automate future synchronizations. -7. Profit. +1. [Review System Requirements](https://github.com/vmstan/gravity-sync/wiki/System-Requirements) +2. [Prepare Your Pi-hole](https://github.com/vmstan/gravity-sync/wiki/Installing#primary-pi-hole) +3. [Install Gravity Sync](https://github.com/vmstan/gravity-sync/wiki/Installing#secondary-pi-hole) +4. [Configure Gravity Sync](https://github.com/vmstan/gravity-sync/wiki/Installing#configuration) +5. [Execute Gravity Sync](https://github.com/vmstan/gravity-sync/wiki/Installing#execution) +6. [Automate Gravity Sync](https://github.com/vmstan/gravity-sync/wiki/Installing#automation) +7. [Profit](https://memory-alpha.fandom.com/wiki/Rules_of_Acquisition) -## Requirements +# Additional Documentation -- Pi-hole 5.0 (or higher) must already be installed on at least two systems, using any of the Linux distributions that Pi-hole is [certified to run on](https://docs.pi-hole.net/main/prerequesites/#supported-operating-systems). -- As of Gravity Sync 3.1, your Pi-hole installs can be a standard installation of Pi-hole or a Docker container deployment. In either case, Gravity Sync will run directly on the host OS, and not inside of a container image. -- If you are using containerized deployments of Pi-hole, only the [official Pi-hole Docker image](https://hub.docker.com/r/pihole/pihole) is supported. -- You will need a user account with local administrator privileges on the host OS at each side. This can be a dedicated account or the system's `root` account. If you're not the `root` account, you can only install in the user's `$HOME` directory. -- If you're using a non-root user, make sure that the account is a member of the `sudo` group on both the primary and secondary Pi-hole. Most of the pre-built images available for the Raspberry Pi already have this configured, as does Ubuntu. During installation this user will be given passwordless sudo permissions to the system. -- The installer will perform checks to make sure the required components to use Gravity Sync such as OpenSSH `ssh`, `SQLite3`, and `rsync` (plus a few others) are available on both the primary and secondary Pi-hole during installation. If they are missing you will have an opportunity to use whatever package manager is available on your system to correct the missing dependencies. These binaries are what do the heavy lifting between your Pi-hole nodes. +Please refer to the [Wiki](https://github.com/vmstan/gravity-sync/wiki) for more information: -### Pi-hole Architecture - -You will want to designate one Pi-Hole as primary and at least one as secondary. - -- The primary Pi-hole is where you'll make most of your configuration changes through the Web UI, doing things such as; manual allow-listing, adding block-lists, device/group management, configuring custom/local network DNS, and changing other list settings. -- The secondary Pi-hole(s) are where you will install and configure Gravity Sync. - -For more information and for reference architectures, please [refer to this document](https://github.com/vmstan/gravity-sync/blob/master/docs/ADVANCED.md#reference-architectures) - -## Installation - -### Primary Pi-Hole - -Minimal preperation is required on your primary Pi-hole, the installer will mostly check that all dependencies have been met for use. - -Login to your _primary_ Pi-hole, and run the following command: - -```bash -export GS_INSTALL=primary && curl -sSL https://raw.githubusercontent.com/vmstan/gravity-sync/master/prep/gs-install.sh | bash -``` - -This will verify you have everything necessary to use Gravity Sync. It will also add a passwordless sudo configuration file for the current user. The installer will then exit, and direct you to proceed to the secondary Pi-hole. - -After you have completed this step, log out of the _primary_ Pi-hole. - -### Secondary Pi-Hole - -From this point forward, all operations will take place on your secondary Pi-hole. - -Login to your _secondary_ Pi-hole, and run the following command: - -```bash -export GS_INSTALL=secondary && curl -sSL https://raw.githubusercontent.com/vmstan/gravity-sync/master/prep/gs-install.sh | bash -``` - -This will verify you have everything necessary to use Gravity Sync. The installer will then use Git to make a copy of the Gravity Sync executables in the folder the installer was executed in, and direct you to proceed to Configuration step below. Once this has completed, you will now have a folder called `gravity-sync` in your installed directory. Everything Gravity Sync runs from there. - -Proceed to the Configuration section. - -## Configuration - -After you install Gravity Sync to your _secondary Pi-hole_ you will need to create a configuration file. This will run automatically by the installer. - -This will guide you through the process of: - -- Specifying the IP or DNS name of your primary Pi-hole. -- Specifying the SSH username to connect to your primary Pi-hole. -- Configuring your key-pair and applying it to your primary Pi-hole. - -The configuration will be saved as `gravity-sync.conf` in the same folder as the script. If you need to make adjustments to your settings in the future, you can edit this file or run the configuration tool to generate a new one. - -If you are deploying Gravity Sync to a system using Docker containers, the script should detect this and prompt for additional configuration. You can also choose to perform an advanced installation when prompted. - -After you're pleased with your configuration, proceed to the Execution phase. - -## Execution - -Now, test Gravity Sync. You can run a comparison between primary and secondary databases, which will be non-disruptive, and see if everything has been configured correctly. - -```bash -./gravity-sync.sh compare -``` - -Assuming Gravity Sync runs successfully, it will indicate if there are changes pending between the two databases. If not, make a subtle change to a allow/block list on your primary Pi-hole, such as changing a description field or disabling a allow list item, and then running `./gravity-sync.sh compare` again to validate your installation is working correctly. - -### The Sync - -The default command for Gravity Sync is simple. - -```bash -./gravity-sync.sh -``` - -But you can also run `./gravity-sync.sh smart` if you feel like it, and it'll do the same thing. - -Gravity Sync will perform some checks to help ensure success and then stop before making changes if it detects an issue. It will also perform the same `compare` function outlined above, and if there are no changes pending, it will exit without making an attempt to copy data. - -**Example:** If the `gravity.db` has been modified on the primary Pi-hole, but the `custom.list` file has been changed on the secondary, Gravity Sync will now do a pull of the `gravity.db` then push `custom.list` and finally restart the correct components on each server. It will also now only perform a sync of each component if there are changes within each type to replicate. So if you only make a small change to your Local DNS settings, it doesn't kickoff the larger `gravity.db` replication. - -This allows you to be more flexible in where you make your configuration changes to block/allow lists and local DNS settings being made on either the primary or secondary, but it's best practice to continue making changes on one side where possible. In the event there are configuration changes to the same element (example, `custom.list` changes at both sides) then Gravity Sync will attempt to determine based on timestamps on what side the last changed happened, in which case the latest changes will be considered authoritative and overwrite the other side. Gravity Sync does not merge the contents of the files when changes happen, it simply overwrites the entire content. - -If the execution completes, you will now have a synchronized copy of your running `gravity.db` and `custom.list` on the both Pi-hole after creating a time-stamped copy of the running files (with `.backup` appended) in the `backup` subfolder located with your script, on the secondary Pi-hole. - -Finally, a file called `gravity-sync.log` will be created in the `gravity-sync` folder along side the script with the date the script was last executed appended to the bottom. - -You can check for successful pull attempts by running: `./gravity-sync.sh logs` - -## Automation - -Automation of sync is accomplished by adding an execution of the script to the user's crontab file. As Gravity Sync won't make any changes if it doesn't detect a difference to sync, then the impact should be minor to your systems. - -```bash -./gravity-sync.sh automate -``` - -Select the frequency per hour (in minutes) that you'd like to sync and that's it. - -Now, make another small adjustment to your primary settings and wait until anointed time to see if your changes have been synchronized. If so, profit! If not, start from the beginning. From this point forward any block list changes you make to the primary will reflect on the secondary within the frequency you select. - -If you'd like to see the log of what was run the last crontab, you can view that output by running: - -```bash -./gravity-sync.sh cron -``` - -Keep in mind if your cron task has never run, you will not see any valid output from this command. - -### Adjusting Automation - -You can verify your existing automation entry by running `crontab -l` and see it listed at the bottom of the crontab file. If you decide to remove or change your frequency (as of version 1.8.3) you can run `./gravity-sync.sh automate` again and pick a new timing, including setting it to 0 to disable automation. - -## Updates - -If you'd like to know what version of the script you have running, check the built in version checker. It will notify you if there are updates available. - -```bash -./gravity-sync.sh version -``` - -You can then run the built-in updater to get the latest version of all the files. Both the `version` and `update` commands reach out to GitHub, so outbound access to GitHub.com is required. - -```bash -./gravity-sync.sh update -``` - -Your copy of the `gravity-sync.conf` file, logs and backups should not be be impacted by this update, as they are specifically ignored. The main goal of Gravity Sync is to be simple to execute and maintain, so any additional requirements should also be called out when it's executed. After updating, be sure to manually run a `./gravity-sync.sh compare` or `./gravity-sync.sh pull` to validate things are still working as expected. - -You can run a `./gravity-sync.sh config` at any time to generate a new configuration file if you're concerned that you're missing something. - -- If the update script fails, make sure you did your original deployment via `git clone` and not a manual install. Refer to [ADVANCED.md](https://github.com/vmstan/gravity-sync/blob/master/docs/ADVANCED.md) for more details. - -## Starting Over - -Gravity Sync has a built in tool to purge everything custom about itself from the system. - -```bash -./gravity-sync.sh purge -``` - -This will remove: - -- All backups files. -- Your `gravity-sync.conf` file. -- All cronjob/automation tasks. -- All job history/logs. -- The SSH id_rsa keys associated with Gravity Sync. - -This function will totally wipe out your existing Gravity Sync installation and reset it to the default state for the version you are running. If all troubleshooting of a bad installation fails, this is the command of last resort. - -**This will not impact any of the Pi-hole binaries, configuration files, directories, services, etc.** Your Adlist database and Local Custom DNS records will no longer sync, but they will be in the status they were when Gravity Sync was removed. - -### Uninstalling - -If you are completely uninstalling Gravity Sync, the last step would be to remove the `gravity-sync` folder from your installation directory. - -## Advanced Installation - -Please review the [Advanced Installation](https://github.com/vmstan/gravity-sync/blob/master/docs/ADVANCED.md) guide for more assistance. +- [Frequently Asked Questions](https://github.com/vmstan/gravity-sync/wiki/Frequent-Questions) +- [Advanced Installation Options](https://github.com/vmstan/gravity-sync/wiki/Under-The-Covers) +- [Changelog](https://github.com/vmstan/gravity-sync/blob/master/CHANGELOG.md)