Thanks
Pihole is installed though disabled at this stage as I had some trouble with the.DNS server settings.I would have to disable DHCp in the RB960PGS, is that right?
The ISP has also not allowed me admin access to the router, or just limited access. Is this normal?
I've never used Pi-hole myself as I usually just set these things up manually, but I do know that it works quite happily with MikroTik devices.
Yes, you would need to disable DHCP in the RB960PGS if you're running it on the Pi-hole. Alternatively, you can disable DHCP on the Pi-hole and keep it running on the RB960PGS (DHCP and DNS don't have to be run on the same device). The only real requirement is that the Pi-hole needs to have a static (preferably fixed) IP address.
Pi-hole also provide documentation on setting up both
WireGuard and
OpenVPN servers. Then all you need to do is forward the necessary ports to the Pi-hole.
No, it is not
normal for your ISP to only give you limited access to your router (I assume you own it - If they own it then the answer is yes). It
is typical for certain ISPs to give people limited access to routers purchased through them (Telstra and TPG in Australia are know for doing it) as this means their help lines can remote in to the router and the customer can't mess with some of the important settings. I got a router from one ISP and they assured people that there was only one
admin account on the device. I didn't believe them and was able to find the
super admin credentials after a quick online search.