From 9de094f09f27a95273638ba4a980910c36f60911 Mon Sep 17 00:00:00 2001
From: Viyurz <128215328+Viyurz@users.noreply.github.com>
Date: Wed, 29 Nov 2023 07:45:02 +0000
Subject: [PATCH] nftables fix ipv6 (allow ICMP)

---
 nftables.conf | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/nftables.conf b/nftables.conf
index 5cbfc21..9878bbf 100755
--- a/nftables.conf
+++ b/nftables.conf
@@ -11,9 +11,9 @@ table inet filter {
 		ct state invalid drop
 		ct state { established, related } accept
 
-		# Allow ICMP ping
-		meta nfproto ipv4 icmp type echo-request limit rate 1/second accept
-		meta nfproto ipv6 icmpv6 type echo-request limit rate 1/second accept
+		# Allow ICMP
+		meta l4proto icmp limit rate 2/second accept
+		meta l4proto ipv6-icmp limit rate 2/second accept
 				
 		# SSH
 		tcp dport 995 limit rate 15/minute accept