From 98f3012fb3c2e5605b24387ddd8c2c7e187164a7 Mon Sep 17 00:00:00 2001
From: Zoltan Papp <zoltan.pmail@gmail.com>
Date: Thu, 17 Aug 2023 08:36:11 +0200
Subject: [PATCH] Use fake address instead of wireguard address

---
 client/internal/dns/service_listener.go |  13 +++++++++++--
 client/internal/ebpf/bpf_bpfeb.o        | Bin 15960 -> 16376 bytes
 client/internal/ebpf/bpf_bpfel.o        | Bin 15960 -> 16376 bytes
 client/internal/ebpf/dns_fwd_linux.go   |  16 +++++++++++-----
 client/internal/ebpf/manager.go         |   2 +-
 client/internal/ebpf/manager_linux.go   |   1 +
 client/internal/ebpf/src/dns_fwd.c      |  23 +++++++++++++++++------
 client/internal/ebpf/wg_proxy_linux.go  |   5 ++++-
 8 files changed, 45 insertions(+), 15 deletions(-)

diff --git a/client/internal/dns/service_listener.go b/client/internal/dns/service_listener.go
index d9997d543..f0f34f3c9 100644
--- a/client/internal/dns/service_listener.go
+++ b/client/internal/dns/service_listener.go
@@ -26,6 +26,7 @@ type serviceViaListener struct {
 	dnsMux            *dns.ServeMux
 	customAddr        *netip.AddrPort
 	server            *dns.Server
+	fakeIP            string
 	listenIP          string
 	listenPort        int
 	listenerIsRunning bool
@@ -67,8 +68,9 @@ func (s *serviceViaListener) Listen() error {
 	s.server.Addr = fmt.Sprintf("%s:%d", s.listenIP, s.listenPort)
 
 	if s.shouldApplyPortFwd() {
+		s.fakeIP = getLastIPFromNetwork(s.wgInterface.Address().Network, 1)
 		s.ebpfService = ebpf.GetEbpfManagerInstance()
-		err = s.ebpfService.LoadDNSFwd(s.listenIP, s.listenPort)
+		err = s.ebpfService.LoadDNSFwd(s.fakeIP, s.listenIP, s.listenPort)
 		if err != nil {
 			log.Warnf("failed to load DNS port fwd, custom port may not support well: %s", err)
 			s.ebpfService = nil
@@ -132,7 +134,14 @@ func (s *serviceViaListener) RuntimePort() int {
 }
 
 func (s *serviceViaListener) RuntimeIP() string {
-	return s.listenIP
+	s.listenerFlagLock.Lock()
+	defer s.listenerFlagLock.Unlock()
+
+	if s.ebpfService != nil {
+		return s.fakeIP
+	} else {
+		return s.listenIP
+	}
 }
 
 func (s *serviceViaListener) setListenerStatus(running bool) {
diff --git a/client/internal/ebpf/bpf_bpfeb.o b/client/internal/ebpf/bpf_bpfeb.o
index 0559da486ebeb13a7f0dbf21ed0d3bf4d40e76c3..c506a43500827e6af9d31eacda1a2811e05056c2 100644
GIT binary patch
literal 16376
zcmd5?VQgGiR=#g$>^NyD?$T~ex3te`n~uGyW5;RZlD2Z&q;*kfhcv6EtCpFuJ<bev
zJkyzRGoghVwIHupu|b03AB)y2RZCcbHb07L!HW1tSuC_avQU8~Kr&E-1xQ4wq84-&
zzVF_1-`qJ}ceCtP;wJCi^PO|<x#ymH-g)oM^Q*^>Kb}fOCTWrR0Cd1eBp{BoEE<>d
zr%cq>Yw6_F7bm18e$~O~?Sdn2Hs&@`MH%<5>tj7`s^95ft9{tL@e{J!O}mv&e|xpR
zv*NF;GrD9)8S~q28Rk;m5toXt*XycS?~VCfud$Z2T+ip@igh2R#ZMrf`#&MOc74|x
zPrdHSUKhX0VUr^D!a=i#ecv$8?N%Ihbn$UxckYG9Ocy!33YOnH`=T4K;|!(ir~&)7
zy)fdi)+@?>74J9KQxST0$Ho5jv$Eeijhm7@c-u{r@_C~5_4@t32iKEbpO2^3_j!4(
zc9Bm%ntY#h3%m59>-GFT-*4_U8EWh#$Mtac_mb;%`nbUVd#RtqW09!cW`D)edcKdb
zcPB?w#@)DgUEiz6&)($ZZ(}#&yQj_6SFdi9L%nLf`O~D&o{noTfA#7W&%b+me@q(U
z82l~IKNr`kq-*tR3;a#el`)=;xpb@Rcfsz}t5-MQjxD}T*56&c#pOHVc70^btJ+T=
z_sTwJ=Y@W=i`2*H+3Rdp_EYM0?`+XsKRSPR+V7p>d#T|3xVd1?lY;*?ABtxk|I$6K
z-xb?_@ZNs&>!e=1#r&A<?{U}P>6pm$JZ-BB>S%0!jTm~jP=I*6j_$_Fr-_Vt7V$$%
zA^#pDvD5l7&RW#+oz{c=dw}*nfqFdj3E6e|?c!nl{_6E5btI-2?H1JIyU0a7w)Jzz
zdi;dB-ReE&>dd9X&epDB+ux45Z0+cHcNw?OsLOlp_z{P-UQ(A28+)aoF5CQ8^W2L1
zZ0+ncerm+|rSc_0z8s-MkMq|R<TihIk|UpfxO!G_e)%)5L)-LxdjEp@`2VAx-S7Oq
zhI(f61#$cMdUlWG#rLac_qhD>`|tDJ=bf%+5@(cBSMShA_-AXP@VMVR>~l!Kqs|Y+
zyU$j9R)5|Rcz56(Lx6cAcN_-)?JIP}^zmd&*E{am^E{C)h|bT*YQa}H)&tQlJfx6i
z+2TAdsp!96cRu3o6@3VKHy0vHC5`_nj_<~SKE-DpVpNM1?|7tR(5$hfaTTY4t^PRZ
zyM&$q&HFNILk<TUZ56;D<v=uCr>QaTH!#?#$3?aq^v?>7n5Lc)JuZd5Ot$q95is0%
zoZDgf1<>-;<`xFbIcn%{z=4)}2`ADq=vTz%kAr?qXwLNonVX@4-nH1mC@LEB6QJI3
zakX>*E_h-(^`_9A<M)M*LHoE3gU3ClDcojKe~2EYQWw#G3jJH&FZ40+s_eOaGQl`D
zj7|TI@a=tZXM34{6uqC6f$Z?^)_oR}G9QqG-M@?;@nP$J4JXnu=r0OA4*CtD3!uLy
z^djg#5_$za*G2cSuI_ixe+K=!%>PrA%Y_8{J>QYdx&v&C>G=nRuXN(wyatdG265QU
zFd)8cyAd->$DlEvrN=?<6S@HUpwNq;9~8T+pO|;|&nWzP!R#oXRJbCT`%QUW;nxJq
zx^};z@Ye+U`7a5^wPEf3MJG;T2Kny46xjjM-BS3wf@SVKHwc!w_S_1G*;rR>zNQ`K
z`4A3PbA)-%9ij)?#K5Cs=RRPF_B@CU<X*5b&TQ0`r#wq%E!XC%dzJ@g&JVTudme!u
znaT_V{3n<of@A4vzdxY&2J~P+e>R})wFb<2<w?NO%m+5E_36L|d5W?8XTj&3Y<Ibi
zx##Zt=t=Jn`0}O-e*V#Fb<WgF#p!&b)NEGfPdCg^v(##up#zQj)Pd>wMt<h(^w5-v
z(PoOXrF^B9f2laPP>LUlCu=kLGsRkdu3DX4sO3v@r8C)m^OKgxk(Jv1cpnvJOXu=3
zc;JXNRhh~5cbFT9Uk>Mh^>VX1KbIZs)H-4gEHvr|D)Uow3)7_ola*%Uz~s4Rsd2Vg
z8!E#>z0_Q&&&T=vBw6{X>U^VFoNwkw55`$CTi${H<1*a3yb-Lz$HOncDYX4h<Zj`-
zyIykusT_omrpZcXkF))4d!Ym5iVKbGV4!ov{F15E%F}gIDbJagO7%viI&YfQ299Qa
zt~75d(`Ke#Je{x3%$R0#j!y{9>J+kMs$80yHTnF)m|2)_R8G&ArsJt{u@2T`Y2<!N
za85*xGJF8Dv2X_L;`DUAVH)hrv^{gw=s}LcIT=-%Z<>W^>tLh0P@gK9=~AO<tYbAw
z3^iKQwLF7?)Fh4roNYAg3scS5E;5b>nS;V|cH=?xK30{PIP0StKlD&M915U!@57v)
zk|&Nmb?n3=$MZ*@dM2NH`ozh2-#*L%ITu3(pWl+lxLo4EK<sDn=^tmU)Gd<Zy@EGv
zW90>v#N))SANdi_j=1aDZhHHowwLqS(|Nw)pOfqP`(4LgJ*f@6vV(lIwmy=P)~b(V
zTLtMjXhkjpKkVG}t$is7YNxz&;)u-@zl<bRJmUw?m2f%8miU!d@WgB#;Z7yl!%bpw
ztksd7v)R3NSn^=q@sz!Hf7~`oNw_SgXFJLIeN8+#GCF*C`2ItqqXRz9)C>~}y55wl
ztL`F==Syev(~YLMY-?;I+jc-IOQ4LqfLBh^+3jFB-9y%}*A3+E^68k?ZOWNx)PZKv
zp7N!6hw^7iVBs!QFEw!cn5oQ9ms+OY%D=c!TEMNx!cwPns@XEQ=dc7|9jCeDa`PfY
zrn5i<3Vzc$;LLP9i19v%Go>PK9;F7-Xs277R|&2H&kCz@!jo$7QniAqxL~do_Op&N
zke#c}pB{h@tRzk<*GDpf$+Ytbr)}#P#>bzH8<k%yRcHJvOU*Kh{lG`~wmg26jXkyM
z569k{ftL;E=LE2I@55zAxmk@R85`MSCnxf`{FAwkRAkaxJ={2``eZJ5;^~u5=RbEe
z=Yvg)gFa62zIbL1Hyy#gxL=d5znZD69ySup;##S7Kvoaqw|TmRo87ru$?!>q5j3`d
zIPy%fg<WgbE2W0DKu;UYInE}Q17r=$-N1<07k8s?BZ*6hR_mO-(h`<jz?{jiv7-{Z
zmv=YD>vlxZk1`!x`obG$5-Z7i&g1t3H+y?yf8@l8N1n?+^W^7`<xf7BJC@Iz{9I+K
zG~Xzhp~(iG740=VRIl3Ji(t9oe>aHbx${BvICj5<<BIV3+>H0H<k=OE_z|DQKaF?B
z9D2O(W%#=Tepl;$7rlS}=I=9nr{dTXIN10;h3Dzl$>Xy$G2X40ILDaaFB$V&cvLpy
zIN*o*jxig2&6~hMeaiX1RuKGwF)N&B$>9k8ze#)N1?P;p$k&Z!9HG6HK#o^Rvnsf1
z%s2TCxGDILjalQn)RtiQ^KH(z9bnjx`UJmk%)5wzjS>7!y<^PZK@^QSdFs0`4SNy%
z;(8K%%3&X$Xi>1lCzAEq^&>tJ*B7iOS{8kYPjpeR#3$Nt*vBW@6bwHYpNQ)V?Oh4v
zh>!if2mVG9pVY9(B|a%xUnKEKO^BQr_EQCi)5x1`9H~}-DPIgQ-uqIrUaODysMJaz
z9|FD*V8qk@-ogBkmRbb?oPO4r5Bd9wtUtYAqF&CoDRN@G2d21w>JyKk2TX7lxF^7v
zFWu`f)!5Q~IC1<pOmq|SJ1z0CLdwUTJbK?m`;i~KcGCZf<A0Fq$mjH;!<pm89Hspw
z!9Q=zN#tYte1I```hwuI#yrpQmjz>df#b1W+Ryx%F>}b5^j3hOpTT-4hd-tTe|QaB
z{r@lqu9!^L;jRH(udtUH4={fF$&?-T{%5>@;(umY?1}%Gl>o#4%&K7VKeH)V{Lh5`
z!vD;+$hjW)-zENbokTr=e_bsnhwHX=EjpaY#lNmEqdsu_vdD=!ens%Na2ddM*J^-~
zFI{T^rvAF%e=%kq``)$baQ98dyb}Y9|J@H5bNNQ#ZIM5R>jCTOHV!lX8;HNHofBZ9
zb#LJKXJeWKJr3`}Z=|mvZe~ny4*LW@SSP8!tAscV0K<mGzk?D;3_Xhxw?B9YxDa5D
zFFV|`4|NXfWF4ix#grp%7XKXT8sf$}nqbOT1h<TNkN84>aow4V0j7Kv2jb=Hp1G_r
z=B7NUgCH&Tb+AY9m)w0K>IHra2kH#(6H#9vhriLV;1Aq=B0A-8QU?oyb5aKpj}Cja
zKz=>!AwKlS*Fj%rBdLRttk2iMXkGN-AM0SW>9DVZ(RP4YmjG$s%2@|xy-6L61Nji-
z*#INHzAl4nTWTB~?L8}Xuprpi!E%86F<#c|>tIrcsgJo*=L3Dtx9l*^wk360>R@UO
zZ0@JD)Md$sH;s9p<2M4#I=vZS%D3Eg;_DFWGV7GZs6%P^MC|L3ud7KNJ>}#XUq=f8
z?giZvEOjWoBG}i_3xaX|*gCozVC0vtv%bz`#+)2(+Ljr2IFaWBOC8FHf3_}Ry_tf@
zzvb#sM*Qm{Mt)=#13C4V1WO(Ab=KFRjQH>CkgvPlQin2YF5aj^Q3iEr=Z47J<m}Xl
z5Esw4*Pe)@KW+0<1!1C#uvcC`Js$9v+kEDPZ_$6Y`SzYFg6P|AKJR6|MgJ7=%btsQ
z-){4}n8VVd-vlA+>h?_AW4)OUh6T~@p%Xr1=Uem@P{L=9`<A+~&5t%c7ykTho8J+i
zZv_0cwtfnG?d>z?eT)98&CejWlJ;dhG^qWu&!m41hjt}ej=(+3ya#?~0Ni~44t@|{
zJAmu_^FZIniT&RP`XN6LzMq%#v9W(Du;b_9xS7C?=VLw5SbJS|Jy2y0jLt%zF$x>k
z|An?bYlCg;IDZ)UgYmY}pCf@ksQ0$fpT`1!aG$Y__N#$@ukfi)f4tw`4)vq9KbbzK
z&wD_0Gx$DU-VF2TPhiK#?LiUH&#wpbiXA)thJf$m%(xv5_;~)djr;@P^ZRSqLO*E3
z*9ESR?`|GXfTk^v3!p>&8t^TFd<8Up_4=!zQNt6=eZhNVf)N*c?-2cHOyN_&!F*8}
zIPfo81`hnQ_v%o84f4Rh=n8Nj4w=v1djtPclm-5!xPIQ-ynX>Rze{?&1Ui^MwFVs8
z-|EEa7&y?k`6}PuATj9zPB9L#&vydTAK(k1L;Y3Yy@8zb-Py)`#t+A5CX~Dk9N6Q%
zD4ajD0vycGdrOD@I&d&QpW(y#yH*sYeqhgDKl{LoaIp2^xCe*FoG*yK*#Hjq*K7fY
z`M~i(eC@MgpdXDx9_9n{mt$l;`|KCwgUzoXAN;dkqQ8l;VLtQ#2lLzf3GAoTeD<9-
z)aQDF_@rqs*iU<32=*&I26>D_{7)A^hvQqoq5cwZuwUs_;J|*SpfL3Vdl}x7>95p}
z%m(Pb0KW&C`{m`l-Z<Xl4?%N2!Cl-N#?RyZpt+xE9B5r*IB~x`J_?%q;c*Uh9N_0c
zbA4W32AvIX6ZAlU7eO=My#6xiK^)$ni=gSF$KM3a{P1`kG~?^>yP%oRg6;R-D8Pq6
zhnV#~#77lA3C!B<?QuP!eoNscg}I(k|ANA+3UfW7{)WO^3U7Dfs7K*Gg|iBeDLkR@
zDTT`lw-jDdcv;~K3a=`>uJDG!TMBP?VtYRc;%DzCA<ioOF@+}-KBaJ3;g-Tn3NI^s
zLE%+}*A?DScuV2!PHgK{uwMI{S%|Yre@x*Cg-<D5R=B0`lETXhUr=~e;dO;K6y8#J
zyA#{@lwiH~`7gv-r9Y<dgu<s3E-TzpcuC=9g)b<)s_?qP8wzhJyxobrdKB(cIIHlO
z!V?OgQn;*eOX2gtLA~r+QJD2Sl&>j#S>a8EuXJMjIu+RK?p5+w;bDcx70xMKP`IY>
zqQd7DUQzg>!fOg&R(Mn4E1lTBwgl_n)vM&O!ov!WE1Xlfpm0s$MTO5RyrS?$h1V3m
ztnjA7S2{7%J<O+`UWH?YhZP=IIHzzy;hMsW3ZGYaMd6DIuPJ<4;Z23FbYlBD9_;__
zUL}te9#(i<;he$+g=-2gDtuny6@@P<yr%GFg*O$x(uwWQ1a|!g?&!bk_B#jn4~z^S
z>ilz;j<3GSx8R|AX-@vckJO_lA0Oi1`}wcI-{U)U^6^@K<o09y$7lOV*na%Ae^J=^
z7f79dWax(`ADqLF&t51W&x2`$Z}|QTJJ-X%`GA&RW9L_L2$DYz8Je4W=}g}KF<Rwx
z`&%~U{<C;T)I4(te?rzQPMV>{xihwxFW&C^_eVbJ+ZZFV=J=zJj^@YMjkxYme&jIW
zq5Q%7U5`JGvs(8#E!z#}4-p;Ak2;-$(vR4FG=I?Pj`)7W$R~LEIWjaNqlR5SGK}2$
z5wz$z7?JlCZSDcS|DdJ#juJLLgZSp}!NmIaz;UN!?_-X1XItomaTj|3JKVVNq~og-
zTWS#}{OpwcKIzBzg13#s`=jRX&OwHjx$OGn?8lSwK8_vc-@ix&n7@b<=lAbTemv%n
zDpbJ1mU5jxUl$8?o99UH?GV0>!;e?{a2?<0*km0J;2e&B71;Zu$A3{q;5$G^3&uw;
zLbB8Re!N;&xX$RmgYgGDW--_OhG4yZKOcJgn~KNU|F6sVz+cPp`T!Aq46ux_-F4hI
zv|c_JhApsXf1}x9|A&U%AnPOd|9Uav<Bk0{T=Nd|e`d?+@1b7Ug8A*=qwg^Pfr1-k
z|F(wn`+W@NkNT@ukK4E{I_2Q}Ku&=7+sgufqav7ke?{+ZUR!9%dkDYJvibS@{ujOi
BP)Ps)

literal 15960
zcmds8e{5XGao%@7C`y(SI*DVocI+qHl8>@Pk&<jNR&3C!71MxWv5wrzZG$_Kchp@-
z-JR}^7FD}7Qz!u4v<Uxj616Z=25teRa0?Z1ApuFD17e^|kw4hNDcBYT7&I`5MnILK
zK-Hjy`hB~z@AgKfC8Ix3bb<GFzM0wC+1=TB`|gpi9(ne&sZ?Z=5}AJm9WW9Jh)=It
zG$QwpnP^*|rIXvXI3X?ZB?qI61xMUz%pIi0rQN%(j&-}q?N0wz?Za*lTU5I3_G!D*
zVpsf$F56bdeARVlE>Ae(@+nvA{wvmdV_xVp1JuxR-Jc&n{5wqj8^%3PZl_Fs(a|5m
z?m@Pw47zrgKkjOo*Nw-Id3r3~QJnnd^=oXw{_3?xi*&Ktj9>od^{b>WF7j?n^IO;d
zo%Q9P<=vP~(7%5D`qhiEg}2K%d!YAIaxOw{%#Px8V82p-EG9R!KR!&3G4BrAD&D~U
zZQj0~7r!2rohC&KpWkk_u-5A^em}XG|AWSQ_W6A#OT3Z2>2YTdO1D|PnD<Vph`q|A
zjt6@-l0Kl{t<;2`-CMA4%SBhEeEeyDv^|-Ja6j4c__){lKHhKD?*H~ay0gz@I0f22
zzpmJ4JKj&O$LZ$<{_mlFG9U9qoihF5_tyh#T^VsU-gR}K_ILUdPR_W;wld+q!nS&h
z($gp6y5Co9zoWQ2CLdz%w{_CwpNZ==()C7d4*WIJ71<|hf2_&=yGO>~Gk%wgZ_L|P
z1lp_GPd~5NFScO6Y$EXidUjt;PdI&_SN#6a@w-vp+-SWn7o6QY3+8u7!G9YM<EI_}
z@<XoP6x({&p6%v!Qm5`Rx7+$5WB1jGn8@@V-EM31LTtW5486O^!F>ESsyiy5Br@g~
z?XEE?#NV^T8;u|B{=ek;B)(LhU*q_LJb#6FgE$NG{6E@ub{=h>PwcBazec^A<ar;*
zH_!7AnFnd_7V`YPR_|tc{*<$qy;+_=Xl%y6g*<PckV&3D<=UyZix78*=-)<h2l@YO
zUM#TpPVvtp?axO07J2snMqYf>jbVd$4fCRn2khq$&WjJpI^QfWN*qo%oPLrQC7yI%
zl$l0Kwk5(Tz~)sT)?8~|_UsbyDEm;nN9^f}JDjIG3%DIY@@c{+i<9h*`84usPmeJP
z{`mK-d)q*wWPi(DTXIA;**ae%8AJq!dm-Ai)x9rRwhRi}DVjO!e8-b9YCx}t0|fn&
z(16jelg0%*(Qmk#&#&k=g^ocpZ?m64&|gDM{SnZ=EA%MnH$n59HinA@E|~)O-(o`)
zJmaE2_I?Aizwd}_GwAOMjk%7#Cwd$TeOc}3VMg2>2+L1Pv<6*yGq4NEw$O>*L;Vq4
zDA5(%NXMZ6Sqyv>^uGzszOGB(oGR$uiY@05RB`f8ZAC-2g~=4(1jKZTIf*p-NZluN
zjQ;$*4T8tP&~I$*6!$jlq;{hI80uZ#FVr#cfULPa^>kt*{U^e=&)kjeWxg$XKLh)I
zBiw_fJ&I1bzKFq|UqFrdVd?p0+(^fui$afpt_ocM%~+z&JZQ!Y=_Ono7v1O4_6^i`
zqh6B!KSjB0FzEOGsVo-f2yJ@bQTPY&4<TSM?%p4w#(c8$a-B)Xp#Mqe5zs#sx?s#^
zj*B|;p!>w`{lMsF^SufW2xdk3BZ9ex#7`)ERIvEHc|zfaVBg=D1ta#Yy{~oSWKJO8
z{0))q5#6^H{+?jp_umTkeZ2>VS(rC$Jf<DyeIKp^xG=4oe=K^SO$>Zp?Cb}IXiF~^
zh%%NPuCkah%EH)v*iw$(-J!SKj<#an$cd8rTRslHJ^w;C7Jc@yJ)m;|-5<~cLbKn!
z0d4mZFzjr(JLvZj(INi<@cmf0*I2lh9<-FBcLnrNLgx?HYBQ!$8ZYLXrB<s_J<&7+
zt<qe}4D4+-CimjyIzM%~I525qluAAS()i45DSkYjs88ijj@R=uwc7M-JzttBoy_g5
zPFNlrRqDIrom7}Eoyj{!{~>2&D!1Jm>W^QxJf{G&<yNgaliQWZ51GBQ&BoqJb#i95
zSlT;LX*KswoN1Msr^o99WwdRSTC<I6oX<~?m7lCto2~I`E5CnVoFj8idga6EmYt`v
za-XbV03CDT5XhB5G;_NGokQl=Or>5fHcX{FV_qsXnw47Bv}#RUt^7=>YAQuD)fhjK
zuT4#vR%?dO*H&#3Ycp9cO-`G9es<W*R-2U*)lxB@ERQ$9nkWrDN(t_Xs9A;&U^Zt@
zf<0a=Hkzi%$`tLLt@iI@E8LS-m1@h(7OjKL+H7O8WQwI`%UH+ilo)Ev73+2>5fH?2
zfOE}OV|KEI2*DuZ7z?;N7M8Oc??Ub8sxp=1io5B0JRbCXgqRJidIRRCbN53jIaS=h
zJFd2B<z~{dUzX$j8o5J?G?}qYDs|tWG8O0G%$_GW#`y8a<EM{2cjWmepUpq@+~@LR
zN1s0y@7#%jK+YMXg2b-`D?1F@TPcU)!&|JoiS*6wSjDbg4=;dU+OBVTgJXx>PPKv6
z*{*h@o<5PcM>5%|H`}IOJ=yi#xIxHUTXunhptnZ7w;c^c{4OhU6YyW{nyz&=o1o6F
za!wqw!RSYkM5AYX=x_{2gMf@*c?Bohn+K?EmV{{6DHy@mF-l1|Du!Su!nXUow{K|w
z;K9L15A5IH@25ElRtXB|dQ&cSx-<}1OQ-Y2W=mYQd9<19I3TMSC?mUj<s_Kh0$P~F
zAPsxnK<@TVSGR6WPU1CTyftob`BK%P{K*nnc)B!7O*|W>D%E0X&NSxor)EpDrM!cs
zZs}xe&ftN<B!h9B;DXCTi4bwl6ci}<HD`m9#dsIm`$?QCjpHd%Y9fj@dTx1@U=Mg!
zumcj7Y}uD;74*dMa;Pw$bDaL%Os#sNA1*M9IH~N8qy^K+#x0ySSD)?UhvR1DS4*`i
zKgd$6j6~ai1K;M~8`)S=tNujnz3G41uzz*{TYH`;bCO%NSYol6J92C^KbC)HtSb^3
zvsMpJCaOL&Hun6{V@LBZJT>O$8o52U%g<B1GoG5kQ%$gcdi1kxlJ!5Zh2PPxNz7il
zPZeE|iNp9ME|%~pJyS0k9zi&L#^w%3o*bXUlC>I@Qqx+Xn@z?Wt-E|5B5PRKtSr{g
zjl>m9(cBrQ<DHdFOPhX3UAfo2P`fr>w`=NrE7QfLFMJ&PZv4cvpM;j<!jsQG|KyAL
z&pq=?NAkyB96OTFoBT{=vQ%xB%)mqw=RU@U8EDjO?M1NM^zZVqoEtxb8rSBtxZ1+w
zSsd>~$vKqA@)ca4G$uWU8t-5k{uY3D$DX%P`|~q@N8x)6+dhYj1@BZmd$-6R6kIoE
zj(rRZM&D<7q#wccCa$(It9<nu#l`lN<F(8b1mm4*5$~R6!QlvJ;MZwyQSj4vy<>k%
z0jB-7;4c_+o<6TQoO;Zd3n0y!;HEKe)84giY=;?)C(1dwsk`w+gMwu|5yuydCmIRl
ze9b&ASjH30JM703`SHnkq9u_NV?0sY;nbInd56DMh`-?4!q*SZpO>fl1h<V@hJI=k
zIPfp!{Q;XLRltqy+oF$gTKp4yl|w9~#J?0V{7Eea@`r%W1^6KFg#Zr#UkWh&X*-<8
zdafddQmX;xZy4)>j~cVS4Y3GFf6~P0KiwPP?Z7f#D~HW=E|7yx4+a?hr-uc<X3Q1z
zpB`~I`T`;xi_h3kzk}-s2vz)ake+uqv(uQT(06)4FvfZe@tIx>Fnmd$7YsYU!uBhI
z(Z0a;7%%N-zG2J^UIWwX0fv5tI*`L3GY5aT2d)0HF>u9Xat>#)@Moc$83{0SGi8Up
z{~7O}_@6l^_Qe0pQh?!q=8|CXKeHxS{Licl7XLHX0u2AN@PYnj@&5ff<~uv*FkH7K
zJFn#8U$$k;@3Z|mkrT81l3?`rHf(1v1sL&=Z3me8%YrW>o)I_MHNjV~e_~+qzvm95
z23*-|PTqsq`99X8$2iRSU&Z{}-1iKaC_NW&{TcEcL9gI{Fy<A^8}l6Hn{rqu$e8CW
zM&5nBA9z%76)B8(OfY_vdh2oELVz(2Qx^OmNNE_SSqL!Yiw^hZurD!h=3Ia&UlNRc
z^CRN(0p@Rm@Rk1cQr-)UdA0lA=fxF;R~`0w9#doWO<nRLZD77_9*4hCALuu6wK0##
z^U*fYUe3HYDEK{>=Y5_`@?ycsBj!Qaisk}L`{x|?c`sUV7<XGD@i&pLgN^=EZNvrU
zBNYP&{-wM>V6&u#aSQcF1^-0yVj;lrCshtG^I|=~%!>;F9sphpF#VD7Bzf_IlUvNZ
z*cOcSVqQ%0CNcY83*_5@WxPpVgqY*8IET77!012SC-^nVi|E6~#}|$H7s}%R!yo3^
zL=Icbvv%K0UP_M!7`D=Nhkag3W4t!6A+J2e_Dh0&UOgXR_?B)99+SMfE*R}?UcD;V
z=Oqls+9zgSh5un*%FH_qHCr+ZN-qBSyp&lIx#Xpc_?MNulxd5c80(Q)4lw2~vm#jX
zlFy@A$x9jWKgmn*ivIe%l<jr%&F56cZa(Yw``pr4{2STPcfs@gc1IrlQHO71Rzwl}
z@%rfzVWNt@-r?IA6H)Y?4nG55eTn`e;FmoYb}&!ges(e7FLd}l9X2S8E7QfWAbJ~>
z@Ht1mM1RoXrxAa?M2KgvpBnXC`16+mza8+u(&00PeTn|2!{;+KDR1zDNrD`)g6gmF
zu-T;ep8)=I@Vf`<{QG<GgYnpw9A`eT!}ct!p9}2xd15^k*ztV$7v%y!=^sjJ9{dx~
zN4$0wj_0+GetJx#%c!pe{^W#De+~uy_;IlRp9}o)<EH&uppWN+E!009=zBZVk2?PF
zjKspTag+t$kJGX3nZ$e>cKrO~nQROF{KKGMKc8&>k$~Ul)VZ$Ffq;*$Y$5+X@c9ig
zETJFN_4}6g_zd=V6g2zxxB!~(S02|v<1C)wCD3;Tc&!`TW<h_E>Mt6Be$bzN_6Ge$
zWypj6q9x#<Kbt4`?N0o&&#u5;s;%_byRm)N1o}3fcs3Aw=>q6`0=x*C-|D>lJm^sW
z67ao&oc+o7C{Xsy9JbGlDtQ?=u$P$w4*Jh50SEo_jNGNa3>@^IK^%ttXO|SFeqhh;
z^ZUV*@tJL)9|$n}3+CUf0tf4B)`5d~vS+Pee(hN+T;CDshwD2B9N4#cF<f89UtrI!
zcc|Z1?deaTZ{NX!@!Itc*2m`6VE)tdXdlc!->Jg+;#nY^f4*aN%|Bo`|9n<=Vd@9|
zWZnX%zp`KL`f_|8za#n{vpxOynB(Pq3C@DF>w!lWOP2YJ^X)O$m*eyJLC}mJj|V}M
z=kaGi?+EZH=m!E^0KF5J@1N_*`0)5FXs*A<i=a8*9=`#a@h8~q2F+OX_<+LnCzL;>
z@G)SV`IGi#C8vL3`vry1DSTexOA0S5ysGfJ!q>WS)T{6|g>woID?F<3afQnY&ndj1
z@HvIgD||`eWrbH2URU^9H%|2`yiMVp!ov!WDtuhwvchu;FDQIY;qwY#Qg~V6RfX3T
zzSfQHyHF61_PiM4oYEgwcvRuz3YQh0Q+Pq)a|)kV_>#iQ3a=`>uJE;PY|rb#c<p&A
z#5tuutnjG9#}zIsJg4x2!siq|uka;>mla-BcwOOZ-Ppc21mopzSYdw3<`f=Qcnmnm
zciDo%b%o~@W<CzvFDZOM;kLpn3a=@AwHw=GchFx?pOVK44=OyO@R-5{h3g8>E4--i
zlEN1hZY#W^@S4I`yRm%@2*$suPswA22NfPscue7f!gYn`6<$<$N#P3$w-sJdcunD}
z-MAMpjJMuCg=2*W6&_J|OyPpUb%o~@UQ~EV;R_146<$$zP2sEE*uLHd>%X~A$zz2F
z6&_J|OyPpUb%o~@UQ~EV;R_146<+c9;ZMc)+_y8gW6$ov?mxKb`UshPnjC19X5_EO
zNF6@**#Z73ng2NXKA%OCZ>hnTSNm<%xAEUX?H5Y>Ez<t68g-KIr|R$5eADFnXZS7D
z3*}pG&}{{OUI4H8X9nQ<F(sYw!!QNO-y;mn%)E3mZ~wxoa-#Dom2&@8wriF=a{zxA
z)f%5L1I;rhZ7m;M-RIXEzA4)|#Y~!K4<9~||1_)p`C*5KY(11e=(vvv*VaS%0}k%9
z^}hUm!a-N<&+ijmsrL=}55IJ8Xkduqq5RMwBH_QKM9;vCynkqe2mj7-_<KuN;WN}1
z|I8%zzw>z6h$HNC$Maa*#3YOdQTyMaMuaC-f58!{7&U%&Nq%qh?fbx6$L0M|{r8MP
zhGL)dj&yh5p6ExoHt7H1c`CsCJZ|jYzbE<j=s$Xq3b<JC`%qYJD+}T|BP`wyd1rC?
z_G%q&o2LSbjKcxk!}hNNdw+EM6=}g77?z-YG!DT={rmQ6T;VvQ9|rCBg`MDMvcD3{
z_sX#N{!m9T1Rg8@xBB%A{DpQ$pX4jum||bH%I}LG{l4c&9oVzqn>JYgJ)&-ZSL6DN
zy=1<z{`PO1z5k-`tGibnwRz2Rqz?MG|97@Q{{ys-vbl{L`^WbNTl{)M9^Fy9{;Zw1
mc@cK1gMR(=@0EeS(a%F)udkTcamf+(cNw;!4=ld_ZT|`K_hRn=

diff --git a/client/internal/ebpf/bpf_bpfel.o b/client/internal/ebpf/bpf_bpfel.o
index 05fa42ecda2c49172d70164d2c42aa5b021951d8..f05d0ac4bcf6e6e7b140a7605446a71ff9d271b2 100644
GIT binary patch
literal 16376
zcmc(me{7sZddJ5}NY)Ss=ZC?B>+vQ)Sm%Oc#{o<ePKHasR4HsjBEpGuy|&l!){ec|
zT_>ADizT?qr=r%CDD@v#ohzYhdTMq4g9@uXHU0xytKyH)qSjKW<hE3`u9a$4sAsjD
z==VGGJnQk3_<*}Z9p&}R=b2|_o|$>x=l!*L>G+AqH`LWRO?B>vZk1H(T=mFmxyu*3
z+zx0q8|CH=t9mSb0|!;!+Dvk;$$iP^IcfI+@&ppwu5X7|`^^0}x$R$2zrpZAWN+gQ
z>>Uz&IZvuy?eXTg-wm0&dS579y)EQ+-3q~cce-wmSFrVVeRN%$+(TafXTP2YzMy`?
z{66b?+IbiDhV?6ygQK0j`{uA-8-rZ`<~l+t*U#N@?(E^4e7*(yL&?zXp}k$_o7^p4
zuTb`xJG(Qm)yv6#<@&aI#j`tupRj*QhGf6jYu6`!@D_AwiTa7vxAWJ1Up=3~{B%97
zzWU{7?YGH=d1!w;KYt>B-{+UbUA;Zzc6{~srn*gDVZHj(b@$$|-p*6krODmz_0|67
zR2X0X4mF389dG^q?hgG0Gu;Qs{d({ukJ8Yi0p5Z<xwqf-?OyqW5{`4}TvB9tv{d=|
z7j`e#<iLdTd;1S0FYI2b$&01YD&?1x;^+&z7rngjG9`#Be-QF5=y&mxPd<4I&clex
z`E%!T7lJ>WuG{KfLMXEH)O9cPhJMcO*y0Q8>xJ`VNcL0xVd%CXxBk1{ey_K_SA)B`
zrp=Syj@*T?(78*&zN@8>Z^3Z;QM`Z0Z+gLn3*o%GP-^ge4)xsXrzH-b-tZfqFI)%?
zc)IQte}yRIyt;c9>&F>1)qTwi)|>z5kH-)D{(koHxb+L_SNt36!KC|Z_p261!nOxx
z{9TR5_juXayCq(3tf}}yEgo0C9P|!{jlU{!b_?`bGjx0C$L_~XKB{88^4`#XXV`zM
zSBuN#-J%!#J06EML-&P#)@$Fl(>Hgqzi^3~>cWkXZKvne7aq^#d<oWJ9_!ps*!^3L
zkFww4H2eRHXMJG?pB~SGzkF&uD~VrxT0AQS|I+<ee^<Y=@r+h--_`9|t`nk+%g7_#
zg#<k^>pri{J;2D%sLv|{uL`_!2)HLQC(!4&{~h<-$eG^0DICx1K+ZLATsf8fT|Hvr
zCY}M1Z5272Za`D_-w>ebE4xts7-ey-O*Ecm%wtnZ%8adBQD)97%q}S>DDzf|@-`fa
z=y#!fkCeMnz8_^qh71lSp1nOdIv__%(Z<eDR=eHfQdf_<Uz9SZ`i$r?qb<FW9+2kW
zM0=RR)xo)6flzMQyd1cRIz<$=d5LourJR6YL>Vb{EB?GJWsddDQ1*8%3783@AKO>Z
zavK;@UZ=9?|31oU=NnSy7=I+?1Z7>fHk6rA)zF0ePf(zr%^>F`?@i=LYFFJXn0wB>
zmDE6$zek*<JX{sm@9&?{IrZ+))==er#w9og{%xWU{yGX=AEuY3oS^)wl)F%VUCKQu
ze@DvWDF3OHr%`6YSbkn_Lw+ZC9y!PVIbZAl+|04w3k$aGE|gL4{>kvN;W{`Ee0>ww
zp#f#CFVhYwCn(=3<t~)>Nx28*LsA|``6$Xr+Za7L?k^brx-fl-^}U7*!ZeTdCBrWZ
z>%3k!{2gH(|Ee%E_V?F@A!53j;=hr)gD6vX$?%Vab?j{+p48^LJFuRY?1BlN<lJE#
z58|LN-X(f0CpbE!p9fH8qoZK#g?E{KU?%F`=S!iSmNI=c+{t?%b>Z$OlpjSu=+F1l
z66rqyIo8+96Opt3JyCgYRNfzzzY>+BbIrAjoc0`wbe@iEcqo!T3pvL0Hryj}`rf@!
z`9M_eh{`Ve*y!l6E9G<j*>b*8DU6&eyVgp+T5+uh%cZ`9{Uhb<z@`4yK9?X3<c9Lu
zLNR+WH$0Y49!YwO1KIPrVs?0RbZD%Y%@60#r}vHYdKp_5iU*Q?R2a%%&PwB!BfhJ`
zKzh%b?pl%;;xW+sU}bb<IK6+Z))9AbtXw)+80i}x>(3wTEmX<}doNe=<x9C@>mYh4
z<tt;QktCb#r6}7sI#RCWMk?8kLrI##sv7VUP9w}qJHae;J#+#=Vb%UxeV90}uAg}U
zsT?gKyQZi%dXnC=+Fxt{rD8%ky+6`9;(pB)ii7<nR~Q_27xSfZVRXb*M$0%V+2Q<%
zEA+d8Qtn)KbYQ?$D#H$U2$j)3cuC)2zHi87vtylZY@}Q`H<Is9`UZ0)h<fww53&Y-
zYgOez*Z^U9>^#J|{{B+gm6^GI|Cg;g4zU&f)>;)tDsHUb8(1D4EA{1Ff4*FC-moHT
z95t%_#Vi*Cu1QWJPM0gCvA#;;Cz&Ms>4PE){U-a7>sl2ClC-XB^2j4eTU-IX`@hQJ
zS@Xp4r;eX|^hEa9Q_o~GPoF%M?AwPiP|wLwLH%3&7^h1Tb&%*N>i$XE*M>>5y((zO
zeyy~kP_ww!ueQ9-vLoSq_M5(XQv1{S(z&d^;gj?E)6Qd6uf+zQ*^xi`zOM5~->a_U
zstVk3zpn}_@Y9Y>+g48np;ea;MjY{;qSL6kiV8lzuf)@Vw<IsVh&yI)2zRRHJ=`P)
z$6^WIIh5Y(o7HZt*W6|AJ&>$+%9?mubk9{M+oLh@P<uz)Lv0Tp?&xUIb*5(QP|($`
zLR<|eX)=<(l<hB9#AF|1%js1EB(g-xxC*Fp&7H#z#=|}0J67GOKAb*lh7Fr?z8`U*
zlJkGE`H?``^LdDH6)NS+xO@y0M*8zrSE^<&jOE90>G7CfTiaKuI$U!Y0x*wr+;O>h
z5#i|!5RrmzIvbqtPxhm|F5*Bwhl@wP3^!Wu(xxiWS)iggD%WHZ4K9urFcc@uxuXAc
zkhG+SM@P=Jzy?N=P%Gz0tp%NF{T4yn$1$`|zLJy+znUK%&{^gyg9!F5*U5c&yk3kw
z_3B?u)S8wT9LMJX=<EKk4sw+%qlq|UIeq+8cQ%uKGPA}N>9k%C7Y?dEnaP}d`qb0e
z)5kKp*z9q?u2Zrv85qVzM_7aVXVTTPnabv7qs9!bh2k1y^l-Y({drvME*JBTcPd;#
z=L1M6p3haWYn4(VU-muF(lULHqe;&Z`Htmk;G|lEyR(;(nn_r#>SceX)kJavb0nSP
znn=t`v$j#)HLIwt+!`ru;f1rdR^s&>NB094dw*en^yJA$pUXb;<kyd9Pd%48p3S=K
zaG@_hQqH^9-ZJhL{W;uP8uhtWq35!HZ;;5n=27H4-o$<Xa=7>R&!K#-<oz-eZ|>8$
z$>!^&41mvj&8XzNv-iWZ8A{=u9iOS#_9O*Je17Bobki&0odEeFj?@I6@sX2%8^^7$
zIoE~!O&ssxxOu_3Zsc0ufchTcA0ls@b`D+m`lGNd^@ekk!Wr<k8Rw?Jaervy^;y3a
z^|QjG;2qz`J9Obc1J}>t*+}?3aO1nqtwg*H%=dn@?<3@O?}s%azs(1P4=_Ke{}H%;
z5o>4ojIgfHxUjCzgs`s9BsiYWR8-IPnGx3YSrFFsSrn!nT%RT6aevEEJ=cftdpI9m
zpEhA#AHJhuy{=Dp#9W^q;oIOdw_)+B5pM&JM|>Z6BI1X@(-F6VuS8rA=KBtguZizD
z$j@TDogX{5AUp=%)>!8jBi;jEintw2M`wHLr@^U+>%on}I$pEz_mDU3s&j3ozDwBq
z$ALP3?)(6<|HaYJh4~{VpTN0Pe+=^%{$=ovQ}E}A8^KqEFQLBSdFQSP`}RGUukbsl
zzjYY<8*u|T1v$s__Ef_;O#V;E-8kkf^(}ZXuYbk4u88jd4+^XOlfr8Ml(5=A9Wm{n
z6;}Hf<MyzBNm%V)iJ0~`!!Fu;iuSz*e-eiEK8>6DN#SoHZ+HXoAmV!PwD4adZ+;W@
zMZ66>7jZp!UijaT-#L$XA-oGQFnJsH3qK6rehu+L_&M;cI3M`3thW9OA$BsxF)g6(
zUvan!_DT2_ya;W4F~mvMXTbI2*cYkKgIit;agz1FN1hDtRmtywANgaPhoVoe2M-GG
z!$8~SLL8+&nQ;$Yczb>c-0*&gqpT;_gQumwO8yXj8SzdqLWgg!^|N4}R~iSgG;0`3
z;aTG#U+7R@<6ufy;~-DfH&L(GiRP%Daj;ET<DkY_je|W>pFz$zIEXy%uNc)c4r(0M
zI5;Eq8V6^EH4e^4%s8lVSL5J{)RP$pox~wB<6tUc#=#_F#=&&NjDs4N(UVVIQm=8a
zM_A+FV8o1r#fTXPCn9DXoQ#-pa7tLmyCSS{aL&|U1Ji%rpuc>Ca>P5qixIPa3C#0E
z;}GMrGUHHMSmRJeSmV$cVU0sQ5i<@|g*6UM$L)Jo<E+M^S*a&84r!d#IMfL_?bD=j
zQ|mKQuW{&1#Ee5d!WxIF5i<^rN6a`hA*^v|T3F-I6=97-v%(sO=D^$!e;wEaXZ$f~
zqr+yH^p0<`;kw^r{e{TsZ*ls8$h)F7V*QlJ=?`)GFOl<l8mD(fo`U^x`WKN88aaP|
z!IO*EfjIq+$o+?{xB}&k&U6CVAA0>wj_VeuZ;PD%9jEP{H~I5Emj8q3+x7XL_HX*B
zmwxE)ar#@)r(ebCTYw$Wex<#hbAJc<c8B0EX_w?5BHtb@f_C>GUXGJhlFI+e%Qx3n
zNag?N<*DoBSufw>bUe+Ul74gq?PoyxQMoQhC+5L<>3q^saS8J6P99p&R`tJ$GW8i3
znC3&~a7*adAuX)-9P#qa@~eW?=bo>5d1}qKTQ(gP{YC<k+J6b<?YMex_0m;)xDB+Y
zSri%nnVS5(v^DPMr1<Bk<9;3WTKK*y`FFj1bM2e2w&Zsv?xX7IIvn%sv)Mnlu?v+S
z^zvIM@=5zqrg`j3=SSu<T{jLU@@+VJa4@NUF`(z$QJ#*t8RglC`7KfRh3)w)iA$MJ
zWM2Qd?@Y>PBBp(V5!1e@h-u$U#MGaQnD#A4O#4!@Korxy=7?!ucf_=>Ct`k^oQRm?
z&qd7smkcN3pB#_+>aS#ef9r|r6Yyljd%%1iU{ZZvr<C`i!25sYyHQBXMpK{dyCY`3
z#!u~!*C8fyf@3;jw&!()N%iL==J+cSv;S#{!_+79ewvBQ{!#=a@;)3~GbZwVIA#e*
zWUl`L0g250T_PZn=?~2;ATi_mwna?+u88Rm#fUlfM8x!m*uUrx^HDwRS&W$e5c?Cy
zkNt=J^S+CT&B!wmQ$O~XJ>b+v{6V5V*H5ntWco{IRG)xj|6%)TR8Rehh`C>}|FHia
zvwss2v%hzRnbF>bh&i7RBj)-nN6hvgN6hhdi9b-x^*bO;Gr6Cg5p%zeMa=!kM4W)1
zkC^itj5rOhMBD-%kC^_(=S3#k!|%g05z~LZAF+>T5p#XtkC^^^00$HM<DMNRASr9S
zS3VZ1YxSohX7nD6nEh1^PZ*vue8upr;d#RghL;Sl7*5eBB%P0*kIHFN-)Xqp@EOB{
zhO34r3{M%pVtCf@yx|4IONLhr>-n$q)$56JTF!UnPQw~6wEm2#A2eJwJYjgs@D;<e
zhUX107+x~GVp!vq+TSekMp@&Rvc@mvZliz3@Sx$U;R(Z2hOZc&H9T*4!SIsd6~ie`
zB=&#9X~Ug{yA7W)JZQLTc*5|M;VXt`4bK~1FuY`V#c(Q$e>^ps4W|ujd}lY*?>6;k
z3~M}B{i><g=RVdmUh4gaavaZDKNqzpUo*UDc-b&+!F|&H8x1Fh+YEOZ&KT}7Tr@mx
zc+&8+;TgkohOZf3G`wtBA2Dn5mq$+J#BiJ8F2j7^$)xRj3>OWL8=f>gZFt7;oZ)MR
z7Y#2P)*D#0w=uQW{={&b;V#1&!##$JhQ|$08lE;hV|dQ+HN%UBmksNqcy0djXs(<X
zZZq6vIAgfSaMAF%;Yq{OhGz`V8NOzC(eScieNmwEJ$Toid%k@4{sS%TZHL$X+-1#I
z-`cm})>3|0e&WZ{W2YW(<?sFUYjE^USw*#v*Y+c~D(J^&|4G<?{Pn*mT>A^8wLdb{
zrnL{w@yBPal#l1pu+cYs{ld=q@HZdO(mAgEN{))!k3(9AhcBMb`X8ee&aHmSX1#tE
zU$bf|Y{gH=D!E?QTE2YV=kmoneE+`gqrP8btgJin*kc{pPG;>PJDhEQh<G@A=)sWV
z$8lckfuQBHw(Mcjp=?LcIV5?z&pWb*f^NI!?M^<y)6VwRc4^fX^7gh6A%42Q&*5Sz
zw;pRcdj8>ncgTI2R?2OvqD!MhnS}G2yh}=rrb15pn%+Gq@l@!lNu<DsCZus0pTD_h
zQQPbLB|bOYX#9+ftMA32=99Kp{s@H|jXy3AT>2h}<MZ6q_BuZQe;~&<%j6Q?1R#AW
zWVOHSBTlaX*xv5JQE8uvl~K0sUxJJ_+4iqWd%oX`lWl)N>|d|FotNeRk@otVW*zId
z)|o%&%A`5ptFUax|E{#R_G&xd3I4n)?Ugm3k@lUsQBq<1<8$7P_P?z)G|=}x+<(5C
zwfoO`TbtN&i7zdX8u2^sIN9+z%#FtHIT%{$b%Nt_FYWkyF!;t3pYXNvIF4G%$oZ@9
fleNOynuEaZDRo!w4J}e)Fx&C}o#^<@q1yc)Dh@zy

literal 15960
zcmds;e{5V=R>!XsH<@&k)JfK@NxR$E{BXx<>exxT@iuMchGy$ZRb#RVq(JpN_Kf4f
z&dg+HoH(>>y^xi%EY;?ZvV^KCMg=LLf`U|3OACr6D&a-@he5k2K#{y+RatB#0zx9J
zK;iqn_nh(diJf#=fe=@Hx%YF<{c-NS=brc8Jooj(FMeTFQ<Kxw<o?Yql1iPs_W8wf
zuP^qx&8XRCDz~j#tjE$<aIwk<Ye>$ux=lXMNxP4bCy>~7Lz{iIPuzd23j-9Rep{C5
zcU1bNJ*;|lAdK_tA#+#TL*eQJA-D4@2J_wVrcPhM>g_yq{;lqiuYcRTGhrP4cc?9t
zK6$?fe1qcZ(C%t?$hod}oImtWCOh*(TW{WC3yzmB)e@E~<!b%atv9^<gLRZRS9|L}
zJYW6oz-v+e#;seoKEQr&fQa+t4%FWIVQ2^a&b)J@%k*EYJeg?!xnBwWeFXax6qoD&
zQ;=)_c3pHoii5%NUfF!F@6hf;ZkrdoT#c*Z+$-Df@%c*qjou&nyT@_#+x@dB{S}A2
z8vO<TTY22|zTzv}u`o!Z_xsF!fQ%!l|5<x%f9g+*=PArb{odABfB&TY{%@b7)~05^
z5Y|53*W*n)m(|;O>bkVL$9?_AdYJPy`XisO?V-P5ruzuFKUZNJy^jBkJ{yW3K#pVO
z;&XNOWKy9P$LdM-d(Ib_P`)$28|Pu6aSkih@&x7Ql1lm2t@B=9lyefFk9j$N51}sS
zPY=wU4*qbwX}x<LA#SC0Ee@hG(kq+S`h4Yj;T()gT-3Ot=fnE%N^x_g{kj^CjcZ-=
zo8FGx>9EkbvmV{mYRK2Zj9n-`zWGfrIDI;tr_)tNALmX&&#gWp@%{L!uX{dy`T?&$
z-t>mQ^AvL)-OphCIkVQL7rkJm`Tzfk^NaqqG|mVAT8#78y}vEzXG`P!Kl*y~_YmiA
z??1%((Epv{y!!Dciu2VSe!uP>=RX_j-7U^P5c<1ooUd(@{_Ym%w@N)M4ASTWp<V2E
z)U-Ao^!k<j?teTk%DMAK&`!A@S$kGGx2^8~NL-Zr?{faSG%f~zxNBUj%0AyME{Y$H
zJ{syb;-dJIjf-68;1MBj^3f;6AVxf1;mKuDw(7qjb5HPe^9hbmcm9!%#}Gx{Rd`1U
zn%xQSN?Psten!FH`T?Hjku&|;J>kl#QFzRwJu(OX#(;R+%)19<>ve9xRcPwQAVAae
zpGLWgvbbCG87X7F&0mr-<MuD3%$#?xUzKu#@*7g_Lirm~zZd1Vq}+${yC^eu^y6aU
zonZji??H}~p^bkS%4)a!6VdVU_RpluseVi9ajvxGT2v3nUAu>NGKD*jbMvSpuLWL?
zI?b%}G2|P)#JTHIPQd>necp%ize|~8-3n#@M8tYbck3(Ea;vtWu%4A=>@6s(om-{M
zF&>t3g0ik#7s^afZD>Wl9R>PhJ96GmcOgeoyP7(|Fm*lmR+9IPKUy8+;f}j<f8Rvs
zZ2uG58dZ5#kHAUrUo(C1r%~YgF#VjA6O{8(?nSvI<pGqxB;`qz-;nYY%1ju`&+Bc-
z9|TV!=lGxTTK~_z9P5w6f^B>lW$4|9hQAAjZ#Q$^-$R+}$@H<56O{i+%DpK6P|5=+
zuYsen{v@uJ@J_XH8_FE#vxYl`={wXvA&l-kKV$fau-ZLnxGJpUeNC7d`~QYvh?wrB
z_#M&lshV})H~cMO9s6&Eb*zsA>$zhWOz;%v_Tt))i@x>)smF4H>z4Gh4`nvW;BZ3c
zU1BGgiFMn3$@`jnEGqAg${WxYefYMIM)EC?BQ|(>B69ZmNL0>7<&LNv-u}b5dqj?7
z;q)xAp9iCHpNQISkLI#n<n*Z>QF&KXmREY`&s%z^Tpn}PLN1@y3iW!ibh73;>xGHB
z>)cbT4(&nsPlwOuJBM6?RIH?Da%1C#<mqIvGMt{uRnoC?d33yz7RCyvvhAfoFJq%(
zWp~of3ZsQ{X%KWA44n*TAJL9Fl2^SfR6w^Q^>S$}yQ`r;==O})s(Xs1p|SCNVb5T(
zUfVNxu3o5}%~d)_(6(Brk5@}cnhsKw4wXx_dahJY_w7xx6i&#fyg7Yh<5}65Pf;|1
z#qQ!MP%4wCWp_n&4!U1*#mY#&>WU*{?o6RtE0#;HUasM)r(=bZE9TvBHFq*C4-dO~
zeT?_ldU*(YGc-~d8g*$p-s8qgwc^QAA)gG5<f;%27P>!24gPJYY9p`#!rJ&Lh;#XT
zwdQKfT;Bi7R{Qp{75;6sDwgVQJns#xmB*_?1(z?>>dqThp~kVsM84v;5)MI5BF@(8
z)$yS^JOq<W5^Uh^L`0$AWEXN>tKx8$J06zn>7+~La53*#l`6U)&2B@b##6<%-ASol
z9;r22cF1-t*C;%sNRu(&q*&1g#o;6iV;+Bob4;FoI(h!^ONWm>`(pasOJ7X;j~qRg
zw6|j-&~wFDLHt*ol><iYy_Qo^_m<wnLTYnASLxU9hbmx~?N?jgX4t`SQoUm>9#?-*
z&z?;EBbl7kyB$-l-Z=F<xRJ~IzWfG7PVYNaYZq(4<9B&gSb!gQXqvWo*n}2ORWRb9
zcSfB>!y8rbBfDcf8#rY0+G}{Cy}N_@W(^lz@)Qi`TkMpYcvf`5MGt#K<KEuxeO(8-
zKDU40z7AdHhO>%OpsscmLT3mANvUu)&DZK;vX7&+?4kj(i&14ncdguT=CFYt8$QU6
zwQi&jXJ^T<VNXusH6d5e`G3+vDNuT<01@sk)j|#ThT&o<Uzl*!iS+b%VZ4wAEG*Ry
z)h8ToC=4=~$4PFu+?0s$bB3U(g6=sRoXRJ=&|VjDxRAqLqELeut#segD$yBGQFH<t
zA~~{W%0-OC`Esi0J{u$**|BozWCu)O6bV{69gP+YBP+KEwYmFjpFEb-ioaMW59=fg
z^$`Txj@#ru{@yOemip??Bx+5^tB&Jy0QB|vGb3E&dN~natYr@$>r4C77y6fYB7N4^
z!<~s$U+C{YdgR!V^!RiAy4Hy8*<HF$NqaIphP#@u-aR_lwh{I3*g{WqXp(T0rB4-0
zkb%SL7Uv7Nm7c2<93Mfre9p&?P&}2Jz?Rjk#X`;ZKr?IfH})RleN4V%5i|2_?;8zM
zutXE*LLD_$4lVoCDJ_Y;;e|T1(Yi~PPFuMpQrg1Xu@0jP&v6=Md0cq*=+S3iPQUoV
z&mK;Xz1)8|O<g)x94eG*1=l%P!*d^f!*y26K35fbuK9QQM4lm^LeA?vo~dWTbG3gr
z<hvf9Q<?ZcK8K4x1N8&=4%P-Gf6aO?yf2}IcNJWGk73)Fa53?niqGCH_3->luHeex
zSL`0-<ny>T;-6mR@8X)lb?-Ij`jD%BJ@f;@A0yv<(YXu4-FSe{yy+Z7zW(#zmMOf;
zMZ6I(Bm4`{H(d^MV*gL_;rt5T)kR+eXWn=2reVG)u)fYGE3EVB64v?jfaCe}MtaWY
zgs{$MQdsA6LAWuWi2ZzozXp5PeF%GnVPZ&-(_YoL2+y$oEY=r!Y~KmdYx4n9zasq4
z$nXCS)<5En;ENGI3ceKa0q~WGJHgWtuLILA+S|PvK7{?h7V#GFg76XO+ZIp}IqQ=*
zf-@060&a=88=Q?e3+{?|9k@sMtH@ig!ykpczhLv}`yb-^F0Ku|&P@upH)HJQupYt(
zz?+X@JtA%aUl#6%e#6hh|Kj!on6L0V(BC(P`9{0}oPnI<dwV9r86?j_?j|um(ep>P
z%z4-!aT|C<Sna<ktoC0LR{N(Srv1~xYX5xP9`-K?tNk}4ru}WOi}vnDzV1!uCWK+V
zPm@M}QMitL!|%YKB3=ic5`G7H+xxID;*H>$h}VH<g|8xia2DrX_&W0BL)b68X$^j}
zo5Oh$?groYZJ3C>vHtK!#=aNC_A4m=DK1yX+9M<X1Fn|WLYyOK@q<EU68j?hr@$R=
zhB!xkiHsoDFZ#E^Prn!99`)pP;1SXPCwSvbh=bIV*MZT6A3qC2Hhc%`7BSD+l<*Pg
z*L@#;8SxhIm54LoX)w>3#>F|qSPHM#xQL_TxdJ)kd`9>@m~p-Z{4UBfxESZ#BK>;k
zHI9A^J>$H_NsWsGQeWfZM8u4XmxML$%?YDBpRO7Gf-vI`<6?q5wy#U#j<)X+*7}U2
zTpx{#0}(SWjzrA37{^h@#W;>KF2-?``=xPI<D$k<GUFoc&^XArsBu%{;(VlMT#Vx=
z<6;~~85c9?SNmgJY!TMD*aoJ*eK~{m`d6%1#9P4Gh%?|WFwc#~rM`$6mny;<mo5ow
zT$&QrxO6#U#-$lyjY|u0`vLqdim=8d*BtC2GcF~<8kZ)8b-yndy~at6OH-mJGcH{g
z*0?kiG2_x~#EeUG!Wx$rgf%YR5Z1WlOkB!<xgY+%&<tn3Lt5?N3?_wd9IO0!j8%W&
zyISS_HJ0BHc`w#APQM{?`d6I7_moxs{uRsrLh6rTesOw7<c$Au;`5OIRTXo!X|*$*
zpu+pUezW8H#OZfMPCt&*mqp%Z?Eg!V^PI)$>msNB#_4ZFPCtp$+knl{`ZJC){WY#l
z{IyxqrzQV$<ePZYk)+-Iy_e(g8F}jEYr}8BC~H4_7H2=&Uh`ou&otyZy)5jfooe5t
zC{9AY$;nFs+G_o;qRjgJvJSIgrt7#kudJs<dk%W}n#MOMwdW_jJkyx5_FtCz>!ly9
ze^%=2N@#s9KkaFgiZ}g!;QNf9m$nYiBkb~<zMr-JJ&3I9_WNGGroq~h-(I+$Ev$^B
z<L>wCvj$^_r1FQo{8J)be6Lag&0`zwkIZj&eYlv&v}phr6PfQ=6#^2O?`BiDn8^Ij
zHjj%**%yTUcvJ{;yxxd8-ie4g-bloLyofm-?`upH^ZOm|TTEp3Hxn`IYn-5-+#>#?
z_0^xqydMoj`iH<5Bj)!y-WQm({&d8AH|2eSiF$sM%F2e4*}gAg>NPHDe-n|O<4;A*
z_R|s5-r0yb{>_Nl|CGcfwTI8AOlpt%HF+DZHY$<G+i^`3kjPv=JPP<k=Kd}O^m^`Z
z8x=^*xF3AZVq(Vq?TwiGI}tJa*SJVA_cz{e_80Fr>)&a={rJ&-aQ))_=K543J=b$G
zVy=I@-)uh<=~;g+V*eK&X8kW4=6#rn^J9PS2{WU;y1!)3@54yX`r4ji+P@I#{r7Cy
zUz)}JSRXOhyDehQZ%4$mzboP$;HM(q3GRz{J9t2tX0+p)h?xFyK4R{_-fvl->-Tn~
zr~mE7#Y8>VXg>i-`Kf>ne$Mc*i1C@zzsFFd?I$8V`@dlLlHtpS^*m^QvqrDyL-l$-
zly92)85)74dObhNyidmZ9>aZxPZ-vCs{QGCQ@&v8Uow2z@U-Ds!`BQi7`|yZBk@}8
zX)~NP++$edg|<Io^dp8R3|}yO$?#>v(}rgaUo*U5_@?2E#1FM!pBI(0M&Dz&&+rMu
zBZemoUod>h@MXi(hGz|5GrVB<rr``Hilp;xGn_TtW4O=o3Bx0XCk$UOe97=-!_$Um
z4PP_7VECqCeQ%(cM?>SYayE*O)b|+fkC^c;j>qJR(N7wV<1y<`8T}Q*Glu63&l|pB
z7>~3*aef@H#c*P{%W$vZe!~NXD~2ZxUo<>r_=@2f!*hn`4c{=VuV9V&%PX03Vz|q2
zui<{f1BNSxCk<aTJZ1Qb;TgkohUX36Fsv_RI^UMeQh!JccNy+A+;4cmaK-SX;fsc+
z3|}!kV|dQ+yx|*$_0_g9e|gnaP7HS$?ls(Rc))PQ@TB33hNlc)F+5{<&hTTONgjH*
zJ-hSq-Caxn;9|)~$i}D1&T3&y{(6k1L&v_*$v-92kCV%M7Hxb>jlR74Z>!oyzlHiQ
zl>S?!|6?`QX?#C5f4`<p8{a?UZ=tG`Z@JO1Mf`aItmdB?K&o?U48jk?R5bn`p>u5P
z%&FA>g;nw7;-^&V^{ecXRZ?Lm{w}JX8+4tubEkYRA6&!d*W11+`!&T%x)%=}+Mj-&
z*}k+VP`A&!(*r^Jgh+kfo$e2~*XMiFeZ;Pi?MwGcUCH-$>xW;O*WKAob$8m`70&aI
z`|k_5*~z2AlCJ*lKtO$tRHZytD*E4pD3kEpkoQWd#VF*MHtOv_iLTw-kc7fON5~U-
zj^p25v#9O$_mu_6mK(oc#?||L=xwpR^7m0#Zv07p0706R33GhL4m<wK(6fq|iBd=-
z@)J>;3M6MAaXJrRd%Fjd(!M{gjIwS2I%KrTwx5&sy!Xe+w$F+EE48=tviv=1zc(HP
z<-d~g^}SNnoGX*&$qM7Iksk=Hz1lAH;@oS}URm??(*E1`sU+mKzX`NoZvW+fFZAEH
z*pmCtF75tv-qt3F+%>**Bh9n(DB1D(_r=SN-$Dh_jI`(Y{H@ZCzX^k{e(@H6R-MGv
iNON+2Wg8lDYwJ%zVE2@jr+0=X`d-3zv_Z#Lzy2?@yHG6v

diff --git a/client/internal/ebpf/dns_fwd_linux.go b/client/internal/ebpf/dns_fwd_linux.go
index e3ea6a4af..c2002c7b0 100644
--- a/client/internal/ebpf/dns_fwd_linux.go
+++ b/client/internal/ebpf/dns_fwd_linux.go
@@ -10,12 +10,13 @@ import (
 )
 
 const (
-	mapKeyDNSIP   uint32 = 0
-	mapKeyDNSPort uint32 = 1
+	mapKeyFakeIP  uint32 = 0
+	mapKeyDNSIP   uint32 = 1
+	mapKeyDNSPort uint32 = 2
 )
 
-func (tf *GeneralManager) LoadDNSFwd(ip string, dnsPort int) error {
-	log.Debugf("load ebpf DNS forwarder: address: %s:%d", ip, dnsPort)
+func (tf *GeneralManager) LoadDNSFwd(fakeIp, dnsIp string, dnsPort int) error {
+	log.Debugf("load ebpf DNS forwarder: address: %s:%d", dnsIp, dnsPort)
 	tf.lock.Lock()
 	defer tf.lock.Unlock()
 
@@ -24,7 +25,12 @@ func (tf *GeneralManager) LoadDNSFwd(ip string, dnsPort int) error {
 		return err
 	}
 
-	err = tf.bpfObjs.NbMapDnsIp.Put(mapKeyDNSIP, ip2int(ip))
+	err = tf.bpfObjs.NbMapDnsIp.Put(mapKeyFakeIP, ip2int(fakeIp))
+	if err != nil {
+		return err
+	}
+
+	err = tf.bpfObjs.NbMapDnsIp.Put(mapKeyDNSIP, ip2int(dnsIp))
 	if err != nil {
 		return err
 	}
diff --git a/client/internal/ebpf/manager.go b/client/internal/ebpf/manager.go
index 95c2fdc28..1aa940ff1 100644
--- a/client/internal/ebpf/manager.go
+++ b/client/internal/ebpf/manager.go
@@ -1,7 +1,7 @@
 package ebpf
 
 type Manager interface {
-	LoadDNSFwd(ip string, dnsPort int) error
+	LoadDNSFwd(fakeIP, dnsIP string, dnsPort int) error
 	FreeDNSFwd() error
 	LoadWgProxy(proxyPort, wgPort int) error
 	FreeWGProxy() error
diff --git a/client/internal/ebpf/manager_linux.go b/client/internal/ebpf/manager_linux.go
index b1d986f20..a68a114f2 100644
--- a/client/internal/ebpf/manager_linux.go
+++ b/client/internal/ebpf/manager_linux.go
@@ -74,6 +74,7 @@ func (tf *GeneralManager) loadXdp() error {
 		Program:   tf.bpfObjs.NbXdpProg,
 		Interface: iFace.Index,
 	})
+
 	return err
 }
 
diff --git a/client/internal/ebpf/src/dns_fwd.c b/client/internal/ebpf/src/dns_fwd.c
index 5228c7e75..f59ed11a8 100644
--- a/client/internal/ebpf/src/dns_fwd.c
+++ b/client/internal/ebpf/src/dns_fwd.c
@@ -1,5 +1,7 @@
-const __u32 map_key_dns_ip = 0;
-const __u32 map_key_dns_port = 1;
+
+const __u32 map_key_fake_ip = 0;
+const __u32 map_key_dns_ip = 1;
+const __u32 map_key_dns_port = 2;
 
 struct bpf_map_def SEC("maps") nb_map_dns_ip = {
 	.type = BPF_MAP_TYPE_ARRAY,
@@ -15,6 +17,7 @@ struct bpf_map_def SEC("maps") nb_map_dns_port = {
 	.max_entries = 10,
 };
 
+__be32 fake_ip = 0;
 __be32 dns_ip = 0;
 __be16 dns_port = 0;
 
@@ -22,8 +25,16 @@ __be16 dns_port = 0;
 __be16 GENERAL_DNS_PORT = 13568;
 
 bool read_settings() {
-    __u16 *port_value;
+    __u32 *fake_ip_value;
     __u32 *ip_value;
+    __u16 *port_value;
+
+    // read fake ip
+    fake_ip_value = bpf_map_lookup_elem(&nb_map_dns_ip, &map_key_fake_ip);
+    if(!fake_ip_value) {
+        return false;
+    }
+    fake_ip = htonl(*fake_ip_value);
 
     // read dns ip
     ip_value = bpf_map_lookup_elem(&nb_map_dns_ip, &map_key_dns_ip);
@@ -46,17 +57,17 @@ int xdp_dns_fwd(struct iphdr  *ip, struct udphdr *udp) {
         if(!read_settings()){
             return XDP_PASS;
         }
-        bpf_printk("dns port: %d", ntohs(dns_port));
-        bpf_printk("dns ip: %d", ntohl(dns_ip));
     }
 
-    if (udp->dest == GENERAL_DNS_PORT && ip->daddr == dns_ip) {
+    if (udp->dest == GENERAL_DNS_PORT && ip->daddr == fake_ip) {
         udp->dest = dns_port;
+        ip->daddr = dns_ip;
         return XDP_PASS;
     }
 
     if (udp->source == dns_port && ip->saddr == dns_ip) {
         udp->source = GENERAL_DNS_PORT;
+        ip->saddr = fake_ip;
         return XDP_PASS;
     }
 
diff --git a/client/internal/ebpf/wg_proxy_linux.go b/client/internal/ebpf/wg_proxy_linux.go
index bdaa3da06..a149383e4 100644
--- a/client/internal/ebpf/wg_proxy_linux.go
+++ b/client/internal/ebpf/wg_proxy_linux.go
@@ -2,7 +2,9 @@
 
 package ebpf
 
-import log "github.com/sirupsen/logrus"
+import (
+	log "github.com/sirupsen/logrus"
+)
 
 const (
 	mapKeyProxyPort uint32 = 0
@@ -35,6 +37,7 @@ func (tf *GeneralManager) LoadWgProxy(proxyPort, wgPort int) error {
 		return err
 	}
 	return nil
+
 }
 
 func (tf *GeneralManager) FreeWGProxy() error {