1 files changed, 2 insertions, 0 deletions
diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft
index 9c82052f..100d9823 100644
--- a/hosts/vidhar/ruleset.nft
+++ b/hosts/vidhar/ruleset.nft
@@ -25,6 +25,8 @@ table inet filter {
    oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop
    oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop
+    iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop
+    iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop
    meta l4proto $icmp_protos counter accept
    iifname eno1 oifname dsl counter accept

diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft index 9c82052f..100d9823 100644 --- a/hosts/vidhar/ruleset.nft +++ b/hosts/vidhar/ruleset.nft
@@ -25,6 +25,8 @@ table inet filter {
25		25
26	oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop	26	oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop
27	oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop	27	oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop
		28	iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop
		29	iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop
28	meta l4proto $icmp_protos counter accept	30	meta l4proto $icmp_protos counter accept
29		31
30	iifname eno1 oifname dsl counter accept	32	iifname eno1 oifname dsl counter accept