I have been trying very hard to get this to work myself (without seeking help here), but, alas, I'm stuck.
I have a heX acting as my main environment's router (192.168.2.2).
I have a spare RB5009 that I'm using to learn on (192.168.2.50). It's not performing any functions whatsoever and is connected to the LAN with a single cable in port 2 connected the main switch on the LAN.
On the RB5009, I set up:
1) a bridge named 'docker' (type bridge)
2) veth1 with 10.0.0.2/32 address and 10.0.0.1 gateway
3) address lit 10.0.0.1/24 interface docker
3) pihole container with interface of veth1 (envs_pihole, etc.)
4) NAT dst-nat rule pointing 192.168.2.50:4443 to 10.0.0.2:80
5) route 10.0.0.0/24 with gateway docker
The pihole container status is 'running' and I can manage it at 192.168.2.50:4443
From inside the RB5009 I can ping 10.0.0.1 and 10.0.0.2
From inside the hex I can ping 10.0.0.1 and 10.0.0.2
From a Windows PC on the LAN (192.168.2.22) I can ping 192.168.2.50 but cannot ping 10.0.0.x
So I thought there was a routing issue, and I added to the heX a NAT dst-nat rule with dst address of 10.0.0.0/24 with 'to address' of 10.0.0.1 and then I tried 192.168.2.50. Neither gave the correct results.
When I point the Windows PC's DNS setting to 10.0.0.2, DNS requests are not getting to the pihole container.
My guess is that the heX is seeing the packets originating from the Windows PC and destined for 10.0.0.x and doesn't know what to do with them.
I tried adding a route to the heX with dst address 10.0.0.0/24 with gateways of 192.168.2.50
Can someone let me know what I'm doing wrong?
Thank you.