From 392092019bfb3266c7596c857ce01bc5e49eb0bd Mon Sep 17 00:00:00 2001
From: Xiao Pan <gky44px1999@gmail.com>
Date: Sun, 3 Dec 2023 10:12:33 +0000
Subject: maybe prevent ipv6 leak

---
 etc/sysctl.d/99-sysctl.conf | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'etc/sysctl.d')

diff --git a/etc/sysctl.d/99-sysctl.conf b/etc/sysctl.d/99-sysctl.conf
index 00f01949..b9677c02 100644
--- a/etc/sysctl.d/99-sysctl.conf
+++ b/etc/sysctl.d/99-sysctl.conf
@@ -4,5 +4,4 @@
 # https://wiki.archlinux.org/title/Nftables#NAT_with_port_forwarding
 # https://github.com/teddysun/across/blob/acef6b00a6ad062c0e99286ea136d1a246def644/wireguard.sh#L514-L522
 net.ipv4.ip_forward = 1
-# ka no ipv6. Test shows if enable this, it will expose my workstation's ipv6. If it has ipv6, maybe also need `table ip6 nat` in nftables.conf to hide workstation's ipv6?
-#net.ipv6.conf.all.forwarding = 1
+net.ipv6.conf.all.forwarding = 1
-- 
cgit v1.2.3-70-g09d2