From 3cacd333ff3ccc72da16b12cc51d05d0c991baac Mon Sep 17 00:00:00 2001
From: kev <vimagick@gmail.com>
Date: Mon, 29 Jun 2015 09:18:40 +0800
Subject: [PATCH] udpate

---
 privoxy/Dockerfile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/privoxy/Dockerfile b/privoxy/Dockerfile
index 57c2a6e..de5015d 100644
--- a/privoxy/Dockerfile
+++ b/privoxy/Dockerfile
@@ -18,7 +18,8 @@ RUN sed -i -e '/^listen-address/s/127.0.0.1/0.0.0.0/' \
 VOLUME /etc/privoxy
 EXPOSE 8118
 
-CMD iptables -t filter -P OUTPUT DROP \
+CMD iptables -A INPUT -s 127.0.0.1 -d 127.0.0.1 -j REJECT \
+    && iptables -t filter -P OUTPUT DROP \
     && iptables -t filter -A OUTPUT -p udp --dport 53 -j ACCEPT \
     && iptables -t filter -A OUTPUT -p tcp \
                 -m multiport --dports 53,80,443,8118 \