nin: allow icmp6

author: nin <nineinchnade@gmail.com> 2017-09-06 00:56:26 +0200
committer: nin <nineinchnade@gmail.com> 2017-09-06 00:56:26 +0200
commit: ef797743965902b8fa7dbe3329138b297cd7589d (patch)
tree: 4715d1980a08a65a3da777c24cc511b0d6c5e198 /nin
parent: 136238a7aae38e996fa1c9761d6b5016fdb7c603 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/nin/2configs/default.nix b/nin/2configs/default.nix
index 212fd36..68521c6 100644
--- a/nin/2configs/default.nix
+++ b/nin/2configs/default.nix
@@ -158,6 +158,7 @@ with import <stockholm/lib>;
       filter.INPUT.rules = [
         { predicate = "-m conntrack --ctstate RELATED,ESTABLISHED"; target = "ACCEPT"; precedence = 10001; }
         { predicate = "-p icmp"; target = "ACCEPT"; precedence = 10000; }
+        { predicate = "-p ipv6-icmp"; target = "ACCEPT"; v4 = false;  precedence = 10000; }
         { predicate = "-i lo"; target = "ACCEPT"; precedence = 9999; }
         { predicate = "-p tcp --dport 22"; target = "ACCEPT"; precedence = 9998; }
         { predicate = "-p tcp -i retiolum"; target = "REJECT --reject-with tcp-reset"; precedence = -10000; }
author	nin <nineinchnade@gmail.com>	2017-09-06 00:56:26 +0200
committer	nin <nineinchnade@gmail.com>	2017-09-06 00:56:26 +0200
commit	ef797743965902b8fa7dbe3329138b297cd7589d (patch)
tree	4715d1980a08a65a3da777c24cc511b0d6c5e198 /nin
parent	136238a7aae38e996fa1c9761d6b5016fdb7c603 (diff)