mirror of
https://github.com/unman/shaker.git
synced 2024-10-01 01:25:41 -04:00
15 lines
490 B
Plaintext
15 lines
490 B
Plaintext
|
#!/usr/sbin/nft -f
|
||
|
flush chain qubes dnat-dns
|
||
|
|
||
|
flush chain qubes custom-forward
|
||
|
insert rule qubes custom-forward tcp dport 53 drop
|
||
|
insert rule qubes custom-forward udp dport 53 drop
|
||
|
|
||
|
flush chain qubes custom-input
|
||
|
insert rule qubes custom-input tcp dport 53 accept
|
||
|
insert rule qubes custom-input udp dport 53 accept
|
||
|
|
||
|
flush chain qubes dnat-dns
|
||
|
insert rule qubes dnat-dns iifname "vif*" tcp dport 53 dnat to 127.0.0.1
|
||
|
insert rule qubes dnat-dns iifname "vif*" udp dport 53 dnat to 127.0.0.1
|