From b5b92e913168a5dde33ddcc067f7c7a39cfced55 Mon Sep 17 00:00:00 2001
From: randomshell <43271778+randomshell@users.noreply.github.com>
Date: Fri, 14 Sep 2018 22:30:53 +0200
Subject: [PATCH] Add DNS rebinding fix

---
 openvpn-install.sh | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/openvpn-install.sh b/openvpn-install.sh
index 825cc20..7ca88f4 100644
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@@ -876,6 +876,10 @@ prefetch: yes' > /etc/unbound/unbound.conf
 			# Start the service
   			systemctl start unbound
 		fi
+
+		# DNS Rebinding fix
+		PRIVATE_ADDRESSES="10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 169.254.0.0/16 127.0.0.0/8"
+		echo "private-address: $PRIVATE_ADDRESSES" >> /etc/unbound/unbound.conf
 	else
 				echo "Unbound is already installed."
 	fi