From 32f4211d21f556f369b834c87f710fc5e2fc0aca Mon Sep 17 00:00:00 2001
From: quindecim <quindecim@airmail.cc>
Date: Fri, 17 Apr 2020 14:51:22 -0400
Subject: [PATCH] DROP IPv6 queries

Can cause leaks with some ISPs
---
 post-fs-data.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/post-fs-data.sh b/post-fs-data.sh
index 0b6d38b..12b4eb1 100644
--- a/post-fs-data.sh
+++ b/post-fs-data.sh
@@ -10,5 +10,6 @@ MODDIR=${0%/*}
 
 iptables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
 iptables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination 127.0.0.1:53
-# ip6tables -t nat -A OUTPUT -p tcp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination [::1]:53
-# ip6tables -t nat -A OUTPUT -p udp ! -d 91.239.100.100 --dport 53 -j DNAT --to-destination [::1]:53
+ip6tables -A OUTPUT -p tcp --dport 53 -j DROP
+ip6tables -A OUTPUT -p udp --dport 53 -j DROP
+