From 1f00d242d279e650edc5309bf0d3874b3534570b Mon Sep 17 00:00:00 2001
From: Kenny Ballou <kb@devnulllabs.io>
Date: Thu, 22 Jul 2021 20:32:39 -0600
Subject: daeva: nft: allow local bound ipv6 traffic

Allowing this traffic makes lsp and dap modes usable.  Before, I would
have to wait for, apparently, ipv6 to timeout and fall back to ipv4 to
use Java dap debugging in emacs.  No more!

Signed-off-by: Kenny Ballou <kb@devnulllabs.io>
---
 daeva/nftables-rules.nft | 1 +
 1 file changed, 1 insertion(+)

diff --git a/daeva/nftables-rules.nft b/daeva/nftables-rules.nft
index 378d630..43234cd 100644
--- a/daeva/nftables-rules.nft
+++ b/daeva/nftables-rules.nft
@@ -55,6 +55,7 @@ table inet filter {
         udp dport openvpn counter accept
         tcp dport postgresql ip daddr { 127.0.0.1/8, 10.0.0.0/8 } counter accept
         ip daddr 127.0.0.0/8 counter accept
+        ip6 daddr ::1 counter accept
         tcp dport 5222 counter accept
         tcp dport 6697 counter accept
         tcp dport 2049 ip daddr 10.0.0.0/8 counter accept
-- 
cgit v1.2.1