From 7f0950383f10d1e4d54e3da9c4cea9f16ba2f958 Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Fri, 17 May 2024 02:26:21 -0700
Subject: [PATCH] Fix IVPN for chaining

Signed-off-by: Tommy <contact@tommytran.io>
---
 etc/systemd/system/dnat-to-ns-boot.service | 4 +++-
 fedora-gnome/ivpn.sh                       | 5 +++--
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/etc/systemd/system/dnat-to-ns-boot.service b/etc/systemd/system/dnat-to-ns-boot.service
index 278285e..7cc9be0 100644
--- a/etc/systemd/system/dnat-to-ns-boot.service
+++ b/etc/systemd/system/dnat-to-ns-boot.service
@@ -1,8 +1,10 @@
 [Unit]
-Description=Run /usr/lib/qubes/qubes-setup-dnat-to-ns
+Description=Run /usr/lib/qubes/qubes-setup-dnat-to-ns 10 seconds after boot
 
 [Service]
 Type=oneshot
+ExecStart=/usr/bin/sleep 10
+ExecStart=/usr/bin/systemctl restart systemd-resolved
 ExecStart=/usr/lib/qubes/qubes-setup-dnat-to-ns
 
 [Install]
diff --git a/fedora-gnome/ivpn.sh b/fedora-gnome/ivpn.sh
index 615f54a..e17e51c 100644
--- a/fedora-gnome/ivpn.sh
+++ b/fedora-gnome/ivpn.sh
@@ -24,10 +24,11 @@ sudo dnf install -y ivpn-ui
 sudo mkdir -p /etc/qubes-bind-dirs.d
 echo 'binds+=( '\'''/etc/opt/ivpn/mutable''\'' )' | sudo tee /etc/qubes-bind-dirs.d/50_user.conf 
 
-unpriv curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/TommyTran732/QubesOS-Scripts/main/etc/systemd/system/dnat-to-ns-boot.service | sudo tee /etc/systemd/system/dnat-to-ns.service
+unpriv curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/TommyTran732/QubesOS-Scripts/main/etc/systemd/system/dnat-to-ns-boot.service | sudo tee /etc/systemd/system/dnat-to-ns-boot.service
+unpriv curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/TommyTran732/QubesOS-Scripts/main/etc/systemd/system/dnat-to-ns.service | sudo tee /etc/systemd/system/dnat-to-ns.service
 unpriv curl --proxy http://127.0.0.1:8082 https://raw.githubusercontent.com/TommyTran732/QubesOS-Scripts/main/etc/systemd/system/dnat-to-ns.path | sudo tee /etc/systemd/system/dnat-to-ns.path
 
-sudo systemctl enable dnat-to-ns.service
+sudo systemctl enable dnat-to-ns-boot.service
 sudo systemctl enable dnat-to-ns.path
 
 # Follow these instructions on how to set up the ProxyVM: https://privsec.dev/posts/qubes/using-ivpn-on-qubes-os/#creating-the-proxyvm
\ No newline at end of file