merge for start_catch_dns()

2024-02-25 10:00:00 +08:00 · 2024-02-25 10:00:00 +08:00 · 8759ee43f1
parent 5f24246e85
commit 8759ee43f1
1 changed files with 13 additions and 5 deletions
--- a/16
+++ b/16
@ -1083,13 +1083,21 @@ allow_dns_port() {
 start_catch_dns() {
    local GATEWAY
    local PROTs
    echo
    echo "iptables: redirect DNS queries to this host"
    iptb 4 v nat I PREROUTING -i ${SUBNET_IFACE} ! -d ${GATEWAY4} -p udp -m udp --dport 53 -j REDIRECT --to-ports 53 || die
    iptb 4 v nat I PREROUTING -i ${SUBNET_IFACE} ! -d ${GATEWAY4} -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53 || die
-    iptb 6 v nat I PREROUTING -i ${SUBNET_IFACE} ! -d ${GATEWAY6} -p udp -m udp --dport 53 -j REDIRECT --to-ports 53 || die
+    for iv in "${IP_VERs[@]}"; do
-    iptb 6 v nat I PREROUTING -i ${SUBNET_IFACE} ! -d ${GATEWAY6} -p tcp -m tcp --dport 53 -j REDIRECT --to-ports 53 || die
+        [[ "$iv" -eq "4" ]] && GATEWAY="$GATEWAY4"
        [[ "$iv" -eq "6" ]] && GATEWAY="$GATEWAY6"
        PROTs=("tcp" "udp")
        for pt in "${PROTs[@]}"; do
            iptb "$iv" v nat I PREROUTING -i "$SUBNET_IFACE" ! -d "$GATEWAY" -p "$pt" -m "$pt" --dport 53 -j REDIRECT --to-ports 53 || die
        done
    done
 }