DROP IPv6 queries

Can cause leaks with some ISPs
This commit is contained in:
quindecim 2020-04-17 14:51:22 -04:00
parent 60e6fb7daf
commit 32f4211d21
1 changed files with 3 additions and 2 deletions

View File

@ -10,5 +10,6 @@ MODDIR=${0%/*}
iptables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
iptables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
# ip6tables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination [::1]:53
# ip6tables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination [::1]:53
ip6tables -A OUTPUT -p tcp --dport 53 -j DROP
ip6tables -A OUTPUT -p udp --dport 53 -j DROP