Block non VPN DNS as an optional flag

vpn-kill-switch / killswitch

VPN kill switch for macOS

https://vpn-kill-switch.com

BSD 3-Clause "New" or "Revised" License

162 stars 15 forks source link

Block non VPN DNS as an optional flag #9

Closed jongittoes closed 6 years ago

jongittoes commented 6 years ago

I think it would be useful to have this as an optional flag, ie -D block any non VPN DNS requests. Is this in the pipeline or is it ok for me to do it and if so any preference on the flag? The only action would be to not include the two config lines for port 53.

nbari commented 6 years ago

Hi, currently there are no plans to implement it, but please feel free to contribute.

nbari commented 6 years ago

hi @jongittoes check the development version, I just added flag ~~-paranoid~~ -leak it allows ping and DNS, but now by default, the behavior is to block ping/dns

nbari commented 6 years ago

@jongittoes please give a try to latest version 0.5.0 by default blocks icmp + DNS

jongittoes commented 6 years ago

Awesome, works a treat! Thanks