diff options
| author | Xiao Pan <gky44px1999@gmail.com> | 2023-12-03 10:09:19 +0000 |
|---|---|---|
| committer | Xiao Pan <gky44px1999@gmail.com> | 2023-12-03 10:09:19 +0000 |
| commit | 45c29dd905b6777602584d45c656edea0771f04c (patch) | |
| tree | b7a8a892bad656f067d833b5e0d5a53bb0bf61c2 /etc/nftables.conf | |
| parent | 7b3b1e1f43f99efd8e493f48177621a0b44d048f (diff) | |
prevent ipv6 leak
Diffstat (limited to 'etc/nftables.conf')
| -rw-r--r-- | etc/nftables.conf | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/etc/nftables.conf b/etc/nftables.conf index 0ea2680a..eae3bbe4 100644 --- a/etc/nftables.conf +++ b/etc/nftables.conf @@ -58,7 +58,9 @@ table inet my_table { # https://wiki.gentoo.org/wiki/Nftables/Examples#Basic_NAT # needed by wireguard? -table ip nat { +# Need inet to masquerade both ipv4 and ipv6? If use ip it will only masquerade ipv4? If use ip6 it will only masquerade ipv6? +# https://wiki.nftables.org/wiki-nftables/index.php/Nftables_families +table inet nat { chain prerouting { type nat hook prerouting priority 0; policy accept; } |