Don't block outgoing DoT traffic, iifname doesn't work in output

Signed-off-by: Magic_RB <magic_rb@redalder.org>
This commit is contained in:
Magic_RB 2023-04-04 00:41:25 +02:00
parent 634dafdf5a
commit eec8f409d6
No known key found for this signature in database
GPG key ID: 08D5287CC5DDCA0E

View file

@ -201,7 +201,7 @@ in
oifname { "${wan}" } tcp dport 53 drop oifname { "${wan}" } tcp dport 53 drop
oifname { "${wan}" } udp dport 53 drop oifname { "${wan}" } udp dport 53 drop
# Allow DoT traffic to leave through "wan" if it comes from "lo" # Allow DoT traffic to leave through "wan" if it comes from "lo"
iifname != { "lo" } oifname { "${wan}" } tcp dport 853 drop # iifname != { "lo" } oifname { "${wan}" } tcp dport 853 drop
} }
chain forward { chain forward {