From 9d1280421121cf09b3b0ea5f67cb20a635c9487e Mon Sep 17 00:00:00 2001
From: Daniel <dhaavi@users.noreply.github.com>
Date: Tue, 19 Jan 2021 15:48:34 +0100
Subject: [PATCH] Fix icmp6 handling just like for icmp4

---
 firewall/interception/nfqueue_linux.go | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/firewall/interception/nfqueue_linux.go b/firewall/interception/nfqueue_linux.go
index 2cb215f4..11ce9d9c 100644
--- a/firewall/interception/nfqueue_linux.go
+++ b/firewall/interception/nfqueue_linux.go
@@ -103,10 +103,12 @@ func init() {
 
 		"filter C17 -m mark --mark 0 -j DROP",
 		"filter C17 -m mark --mark 1700 -j RETURN",
+		"filter C17 -m mark --mark 1701 -p icmp6 -j RETURN",
 		"filter C17 -m mark --mark 1701 -j REJECT --reject-with icmp6-adm-prohibited",
 		"filter C17 -m mark --mark 1702 -j DROP",
 		"filter C17 -j CONNMARK --save-mark",
 		"filter C17 -m mark --mark 1710 -j RETURN",
+		"filter C17 -m mark --mark 1711 -p icmp6 -j RETURN",
 		"filter C17 -m mark --mark 1711 -j REJECT --reject-with icmp6-adm-prohibited",
 		"filter C17 -m mark --mark 1712 -j DROP",
 		"filter C17 -m mark --mark 1717 -j RETURN",