summaryrefslogtreecommitdiffstats
path: root/extensions/libipt_ah.txlate
diff options
context:
space:
mode:
Diffstat (limited to 'extensions/libipt_ah.txlate')
-rw-r--r--extensions/libipt_ah.txlate4
1 files changed, 2 insertions, 2 deletions
diff --git a/extensions/libipt_ah.txlate b/extensions/libipt_ah.txlate
index e35ac17a..baf5a0ae 100644
--- a/extensions/libipt_ah.txlate
+++ b/extensions/libipt_ah.txlate
@@ -8,7 +8,7 @@ iptables-translate -A INPUT -p 51 -m ah ! --ahspi 50 -j DROP
nft 'add rule ip filter INPUT ah spi != 50 counter drop'
iptables-translate -A INPUT -p 51 -m ah --ahspi 0:4294967295 -j DROP
-nft 'add rule ip filter INPUT counter drop'
+nft 'add rule ip filter INPUT meta l4proto ah counter drop'
iptables-translate -A INPUT -p 51 -m ah ! --ahspi 0:4294967295 -j DROP
-nft 'add rule ip filter INPUT counter drop'
+nft 'add rule ip filter INPUT ah spi != 0-4294967295 counter drop'