diff --git a/helmfile.yaml b/helmfile.yaml
index 9524ae6..8c226a7 100644
--- a/helmfile.yaml
+++ b/helmfile.yaml
@@ -9,6 +9,8 @@ repositories:
     url: https://charts.jetstack.io
   - name: argocd
     url: https://argoproj.github.io/argo-helm
+  - name: mojo2600
+    url: https://mojo2600.github.io/pihole-kubernetes/
 ---
 releases:
   - name: metallb
@@ -36,4 +38,10 @@ releases:
     chart: argocd/argo-cd
     version: 7.7.21
     values:
-      - ./values/argocd.values.yaml
\ No newline at end of file
+      - ./values/argocd.values.yaml
+  - name: pihole
+    namespace: pihole
+    chart: mojo2600/pihole
+    version: 2.27.0
+    values:
+      - ./values/pihole.values.yaml
\ No newline at end of file
diff --git a/kustomize/csi-driver-nfs.yaml b/kustomize/csi-driver-nfs.yaml
index 42fff12..5b9315a 100644
--- a/kustomize/csi-driver-nfs.yaml
+++ b/kustomize/csi-driver-nfs.yaml
@@ -2,6 +2,8 @@ apiVersion: storage.k8s.io/v1
 kind: StorageClass
 metadata:
   name: nfs-csi
+  annotations:
+    storageclass.kubernetes.io/is-default-class: "true"
 provisioner: nfs.csi.k8s.io
 parameters:
   server: 192.168.1.180
diff --git a/values/ingress-nginx.values.yaml b/values/ingress-nginx.values.yaml
index 406ba8e..19c0e5d 100644
--- a/values/ingress-nginx.values.yaml
+++ b/values/ingress-nginx.values.yaml
@@ -1,3 +1,6 @@
 controller:
   ingressClassResource:
-    default: true
\ No newline at end of file
+    default: true
+  service:
+    annotations:
+      metallb.io/allow-shared-ip: kropcloud
\ No newline at end of file
diff --git a/values/pihole.values.yaml b/values/pihole.values.yaml
new file mode 100644
index 0000000..66759c9
--- /dev/null
+++ b/values/pihole.values.yaml
@@ -0,0 +1,21 @@
+ingress:
+  enabled: true
+  hosts:
+    - pihole.kropcloud.net
+  annotations:
+    nginx.ingress.kubernetes.io/force-ssl-redirect: "true"
+    nginx.ingress.kubernetes.io/backend-protocol: "HTTP"
+    cert-manager.io/cluster-issuer: cloudflare-issuer
+  tls:
+    - hosts:
+        - pihole.kropcloud.net
+      secretName: pihole-tls
+
+persistentVolumeClaim:
+  enabled: true
+
+serviceDns:
+  annotations:
+    metallb.io/allow-shared-ip: kropcloud
+  type: LoadBalancer
+  externalTrafficPolicy: Cluster