lines 14,15 are simply flushing filter & nat table, clear
line 17 rule tells to use default chain policy (accept) for packets leaving local machine, generated by Tor process ... fine, clear
lines 18-20 tell to accept packets that were sent to local machine...fine, they do not betray us, since they do not leave network card
line 21 redirects packets to ANY dns server on Internet (udp/53) to local dns server (see DNSPort in /etc/tor/torrc), fine ... we avoid DNS leaks
now i'd just redirect everything else to TRANS_PORT ...
see TransPort in /etc/tor/torrc
but the rest, lines 22 - 29 are confusing me...
ok...tor cannot transport UDP...right?