From b8abb6f26d24a51171cc7ef71c69e08dff268fc1 Mon Sep 17 00:00:00 2001
From: actions <action@github.com>
Date: Sat, 6 Jul 2024 14:30:08 +0800
Subject: [PATCH] luci-app-passwall: sync upstream

last commit: https://github.com/xiaorouji/openwrt-passwall/commit/5273e74192b82e9895bdc2a2ae76ca7a7a7c51e3
---
 luci-app-passwall/root/usr/share/passwall/iptables.sh | 2 +-
 luci-app-passwall/root/usr/share/passwall/nftables.sh | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/luci-app-passwall/root/usr/share/passwall/iptables.sh b/luci-app-passwall/root/usr/share/passwall/iptables.sh
index b718166b3..93ec84c12 100755
--- a/luci-app-passwall/root/usr/share/passwall/iptables.sh
+++ b/luci-app-passwall/root/usr/share/passwall/iptables.sh
@@ -1111,7 +1111,7 @@ add_firewall_rule() {
 		$ip6t_m -I OUTPUT $(comment "mangle-OUTPUT-PSW") -o lo -j RETURN
 		insert_rule_before "$ip6t_m" "OUTPUT" "mwan3" "$(comment mangle-OUTPUT-PSW) -m mark --mark 1 -j RETURN"
 
-		[ $(config_t_get global dns_redirect) == "1" ] && {
+		[ $(config_t_get global dns_redirect "0") = "1" ] && {
 			$ipt_m -A PSW -p udp --dport 53 -j RETURN	
 			$ip6t_m -A PSW -p udp --dport 53 -j RETURN
 			$ipt_n -I PREROUTING -p udp --dport 53 -j REDIRECT --to-ports 53 -m comment --comment "PSW_DNS_Hijack" 2>/dev/null
diff --git a/luci-app-passwall/root/usr/share/passwall/nftables.sh b/luci-app-passwall/root/usr/share/passwall/nftables.sh
index ca75f6904..690c9eeee 100755
--- a/luci-app-passwall/root/usr/share/passwall/nftables.sh
+++ b/luci-app-passwall/root/usr/share/passwall/nftables.sh
@@ -1152,7 +1152,7 @@ add_firewall_rule() {
 		nft "add rule inet fw4 mangle_output oif lo counter return comment \"PSW_OUTPUT_MANGLE\""
 		nft "add rule inet fw4 mangle_output meta mark 1 counter return comment \"PSW_OUTPUT_MANGLE\""
 
-		[ $(config_t_get global dns_redirect) == "1" ] && {
+		[ $(config_t_get global dns_redirect "0") = "1" ] && {
 			nft "add rule inet fw4 PSW_MANGLE ip protocol udp udp dport 53 counter return"	
 			nft "add rule inet fw4 PSW_MANGLE_V6 meta l4proto udp udp dport 53 counter return"
 			nft insert rule inet fw4 dstnat position 0 tcp dport 53 counter redirect to :53 comment \"PSW_DNS_Hijack\" 2>/dev/null