DNS leak prevention

2025-11-03 22:27:24 +01:00
parent 83c3a4400b
commit fa3cd23ec5
2 changed files with 64 additions and 0 deletions
--- a/README.md
+++ b/README.md
@@ -31,3 +31,15 @@ move all the files in $1 subdirectories to $1.
 script to backup firefox config directory and restore the latest backup   
 adapt the hostnames and paths to what you need, not made to be easily configured with environment variables.  
 **Careful**, firefox config folder includes all your profiles, including their cookies and localstorage (access tokens of your accounts can be there). 
+
+
+## NetworkManager
+NetworkManager related scripts.  
+These scripts need to be moved in /etc/NetworkManager/dispatcher.d/ and must be executable
+
+### 90-nft-wg-sh
+Automatically toggle DNS leak protection for wireguard connections with nftables.  
+Adds tcp/udp rules to block outgoing traffic to dns port (53) if the outgoing interface isn't the wireguard connection.   
+It assumes wireguard connection names start with "wg-"  
+  
+  You can check for DNS leaks with [this website](https://www.dnsleaktest.com/)