From 45c29dd905b6777602584d45c656edea0771f04c Mon Sep 17 00:00:00 2001
From: Xiao Pan <gky44px1999@gmail.com>
Date: Sun, 3 Dec 2023 10:09:19 +0000
Subject: prevent ipv6 leak

---
 etc/nftables.conf | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'etc')

diff --git a/etc/nftables.conf b/etc/nftables.conf
index 0ea2680a..eae3bbe4 100644
--- a/etc/nftables.conf
+++ b/etc/nftables.conf
@@ -58,7 +58,9 @@ table inet my_table {
 
 # https://wiki.gentoo.org/wiki/Nftables/Examples#Basic_NAT
 # needed by wireguard?
-table ip nat {
+# Need inet to masquerade both ipv4 and ipv6? If use ip it will only masquerade ipv4? If use ip6 it will only masquerade ipv6?
+# https://wiki.nftables.org/wiki-nftables/index.php/Nftables_families
+table inet nat {
 	chain prerouting {
 		type nat hook prerouting priority 0; policy accept;
 	}
-- 
cgit v1.2.3-70-g09d2