From 981b01c145b878b5a4e743675b1cacae6eb2fbe1 Mon Sep 17 00:00:00 2001
From: Kaboom <58372747+kaboombot@users.noreply.github.com>
Date: Fri, 18 Jul 2025 13:33:12 +0300
Subject: [PATCH] iptables: Use actual private IPv6 range

We don't want these addresses to be routable, which the previous
documentation range is.
---
 config/iptables | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/config/iptables b/config/iptables
index 0c8b7e6..e897eca 100644
--- a/config/iptables
+++ b/config/iptables
@@ -5,7 +5,7 @@ iptables -A INPUT -p tcp --syn --dport 25565 -m connlimit --connlimit-above 5 --
 iptables-save > /etc/iptables/rules.v4
 
 # IPv6
-ip6tables -t nat -A INPUT -p tcp --dport 25565 -j SNAT --to-source 2001:db8::1-2001:db8::6464
-ip6tables -t nat -A INPUT -p udp --dport 19132 -j SNAT --to-source 2001:db8::1-2001:db8::6464
+ip6tables -t nat -A INPUT -p tcp --dport 25565 -j SNAT --to-source fd00:dead:beef::1-fd00:dead:beef::6464
+ip6tables -t nat -A INPUT -p udp --dport 19132 -j SNAT --to-source fd00:dead:beef::1-fd00:dead:beef::6464
 ip6tables -A INPUT -p tcp --syn --dport 25565 -m connlimit --connlimit-above 5 --connlimit-mask 64 -j REJECT --reject-with tcp-reset
 ip6tables-save > /etc/iptables/rules.v6