From 2cdc1f0229bef01a2661dd38c529480fd37477ff Mon Sep 17 00:00:00 2001
From: Kjetil Orbekk <kj@orbekk.com>
Date: Sun, 23 Apr 2023 10:19:34 -0400
Subject: fix router

---
 modules/router.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/router.nix b/modules/router.nix
index 836f037..b73c3e2 100644
--- a/modules/router.nix
+++ b/modules/router.nix
@@ -209,7 +209,7 @@ let
 
             ct state vmap { established : accept, related : accept, invalid : drop }
             # Don't allow accidental vpn forwarding to wan.
-            iifname vpnlan-vport oifname wan-vport counter deny
+            iifname vpnlan-vport oifname wan-vport counter reject
             oifname he0 counter accept
             oifname wan-vport counter accept
             oifname mullvad counter accept
-- 
cgit v1.2.3