diff --git a/hosts/home-morefine/docker/pihole/docker-compose.yaml b/hosts/home-morefine/docker/pihole/docker-compose.yaml
new file mode 100644
index 0000000..937fe91
--- /dev/null
+++ b/hosts/home-morefine/docker/pihole/docker-compose.yaml
@@ -0,0 +1,29 @@
+services:
+  pihole:
+    image: pihole/pihole:latest
+    container_name: pihole
+    restart: unless-stopped
+    networks:
+      - caddy_internal
+    ports:
+    #  - "8081:80"
+      - "53:53/tcp"
+      - "53:53/udp"
+    environment:
+      TZ: 'Europe/Minsk'
+      WEBPASSWORD_FILE: /run/secrets/pihole/WEBPASSWORD
+      #FTLCONF_webserver_api_password: WEBPASSWORD_FILE
+      FTLCONF_dns_listeningMode: 'all'
+    volumes:
+      - /srv/rundata/pihole/etc-pihole:/etc/pihole/
+      - /srv/rundata/pihole/dnsmasq.d:/etc/dnsmasq.d/
+    dns:
+      - 127.0.0.1
+      - 1.1.1.1
+    #      - 8.8.8.8
+    cap_add:
+      - NET_ADMIN
+
+networks:
+  caddy_internal:
+    external: true
diff --git a/hosts/home-morefine/docker/pihole/secrets.sops.yaml b/hosts/home-morefine/docker/pihole/secrets.sops.yaml
new file mode 100644
index 0000000..80cd720
--- /dev/null
+++ b/hosts/home-morefine/docker/pihole/secrets.sops.yaml
@@ -0,0 +1,25 @@
+WEBPASSWORD: ENC[AES256_GCM,data:edQU3J4QPY7RsQuI1ZE=,iv:cGSMcG9olkMY93kNF386lPjBGHhUhj+mF/ly7vWMrq4=,tag:fNRBj3gRMQMytZWSOa66lQ==,type:str]
+sops:
+    age:
+        - recipient: age1ua9qahphsqf2x8ew2n4umapp23a66t0eccccc0d5etp82n8tsqgsfc8qjk
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB6SXdIQktJUTNQRXVoenlu
+            Y2RsMmRuM084eHRTdnZnaG9uUFZhRHllZ3kwCjFYV01lR2d0ci9YR09TcVp4Y1lC
+            clNkckNEbUxZeHI5UnFPd2ZzZkVTNjAKLS0tIElSYlp6ZGg1UTNNQk5QbitjWlIy
+            QjBJM0h1bmw2eGt1Sy9WUFd0RmNMSTgK64gSZP+MSlrHx3//MLoJQf+Nyxgqx/ab
+            mdvw8x33dimOgJSPK8yJqxVAPzjasboz5Nm8CJsAemX+XyUJxh8nwA==
+            -----END AGE ENCRYPTED FILE-----
+        - recipient: age1nw388umnlxfj3cg9lqjyltghfx6w709nam8s2x826c3nxla9famq3uya73
+          enc: |
+            -----BEGIN AGE ENCRYPTED FILE-----
+            YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB4WTlKV0lSOEZtU1NhVHBM
+            Z1NocEpUMXhpVDE1dW9lRk41cTlDdUthNEhzCkszVkc2NTJkbWRRTWx2b1p0d3dv
+            eThXT05LbDhBWHRCV1BYSnduMGNMQm8KLS0tIE1JbVZkblNXdktqUEYzak8zTmRL
+            amVHRDJlVUpxeFg0S0RmUXUrckN4VGsKlpPBESTbM+F2VjwwP/RiTFnPXZgW47n4
+            PdD5Tv7tqFCP/WDX+SWIgNvhSg9KqPYbtmy93wfkxYvOEc4e/mOq+w==
+            -----END AGE ENCRYPTED FILE-----
+    lastmodified: "2026-02-13T11:14:33Z"
+    mac: ENC[AES256_GCM,data:O5mdN3OPNcgaL+TRnYx4Shj9Xsyn3XFmCJqxx93FbGTgI8Se6m5sPrYBCfl2xhk2ZlejN5Ttk3rKRL2G4L02tPGK6JZxsUQ2O93W3nUCUXFo0nJhANjrb+piLa0B+NxVl23QSo/i2MYAhJwkH/qi9Tl/hXJybrAVRBIhKgKlGBc=,iv:BNdYQ6NYs/IMHMmmXOGB+2br0wA+VaxnzWUgELY49F0=,tag:t88fAbdEf6yriynFENsQZQ==,type:str]
+    unencrypted_suffix: _unencrypted
+    version: 3.11.0