Reading the comments at https://github.com/systemd/systemd/issues/7182
does not give me confidence that the issue is cleanly "resolved" for all now and future setups. Major risk for users in Iran, Turkey, China, Russia, etc.
I run internet activities in Linux Mint in VirtualBox in Windows10, with Eddie and OpenVPN in the outer ring of W10.
Initially to get going without having to spend time with problems, but also due to some logic, I always follow the discipline of:
1. Boot W10. 2.Start Eddie and OpenVPN with Network Lock. 3. Connect to Air server. 4. Start VirtualBox. 5. Boot Linux guest.
Logically this means that Linux only sees and interacts with the secured VPN configuration. Mint handles Network Lock state changes as simple link up/down/up.
Occasional testing with ipleak, doileak etc have not shown any leakage.
Suggest this procedure as extra insurance while the systemd civil war and casualties continue.
Edit: Sorry, after reading links I got a bit brainfuzzy and thought original poster was running in a VM. I will leave my comment for that configuration, and go for my second coffee of the day.