From 2657428d6efb8f5cd82b49dd322b3e026243df6a Mon Sep 17 00:00:00 2001
From: Domingo Dirutigliano <me@domy.sh>
Date: Fri, 29 Sep 2023 00:20:00 +0200
Subject: [PATCH] fix: allow established also on fwd table

---
 backend/modules/firewall/nftables.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/backend/modules/firewall/nftables.py b/backend/modules/firewall/nftables.py
index 6a016fd..32d45f6 100644
--- a/backend/modules/firewall/nftables.py
+++ b/backend/modules/firewall/nftables.py
@@ -49,6 +49,10 @@ class FiregexTables(NFTableManager):
             { "add":{ "rule": {
                 "family": "inet", "table": self.table_name, "chain": self.rules_chain_in,
                 "expr": [{ "match": {"op": "in", "left": { "ct": { "key": "state" }},"right": ["established"]} }, { "accept": None }]
+            }}},
+            { "add":{ "rule": {
+                "family": "inet", "table": self.table_name, "chain": self.rules_chain_fwd,
+                "expr": [{ "match": {"op": "in", "left": { "ct": { "key": "state" }},"right": ["established"]} }, { "accept": None }]
             }}}
         ] if allow_established else []) + ([
             { "add":{ "rule": {