From c42b028538b38a4aa8973565e05903fdde0b9a91 Mon Sep 17 00:00:00 2001
From: cezar97 <cezar97@protonmail.com>
Date: Fri, 6 Jul 2018 01:25:57 +0300
Subject: [PATCH 1/2] Add "Check for DNS leaks" paragraph in README (#242)

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 7ffa7b3..21b1a3f 100644
--- a/README.md
+++ b/README.md
@@ -255,6 +255,10 @@ SHA-1 is not safe anymore, so I use SHA-256 which is safe and widely used.
 
 TLS-Auth is not enabled by default by OpenVPN, but it is in this script.
 
+## Check for DNS leaks
+
+Go to [dnsleaktest.com](https://dnsleaktest.com/) or [ipleak.net](https://ipleak.net/) with your browser. Only your server's IP should show up.
+
 ## Say thanks
 
 You can [say thanks](https://saythanks.io/to/Angristan) if you want!

From 63ac18075d07a1c944e9b4e08ba6e01b99c9cf2e Mon Sep 17 00:00:00 2001
From: cezar97 <cezar97@protonmail.com>
Date: Fri, 6 Jul 2018 23:11:22 +0300
Subject: [PATCH 2/2] Add quad9 secondary DNS (#248)

See https://www.quad9.net/faq/#Is_there_a_service_that_Quad9_offers_that_does_not_have_the_blocklist_or_other_security.
---
 openvpn-install.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/openvpn-install.sh b/openvpn-install.sh
index e74d854..44647c5 100644
--- a/openvpn-install.sh
+++ b/openvpn-install.sh
@@ -529,6 +529,7 @@ ifconfig-pool-persist ipp.txt" >> /etc/openvpn/server.conf
 		;;
 		3) # Quad9
 		echo 'push "dhcp-option DNS 9.9.9.9"' >> /etc/openvpn/server.conf
+		echo 'push "dhcp-option DNS 149.112.112.112"' >> /etc/openvpn/server.conf
 		;;
 		4) # FDN
 		echo 'push "dhcp-option DNS 80.67.169.40"' >> /etc/openvpn/server.conf