diff --git a/services/firewall/rules.nft b/services/firewall/rules.nft
index 0e87c69..a02e24a 100644
--- a/services/firewall/rules.nft
+++ b/services/firewall/rules.nft
@@ -5,7 +5,7 @@ define vpn = wg0
 define vpn_net = 10.0.0.0/24
 define lan_net = 192.168.2.0/24
 
-define icmpv4 = {
+define icmpv4_basic = {
   echo-reply, # type 0 / ping
   echo-request, # type 8 / ping
   destination-unreachable, # type 3
@@ -53,9 +53,9 @@ table inet firewall {
     iif lo accept                                         # allow traffic from loopback interface
 
     # Limit and accept ICMP packets
-    ip protocol icmp icmp type $allowed_icmp limit rate 1/second burst 5 packets accept
+    ip protocol icmp icmp type $icmpv4_basic limit rate 1/second burst 5 packets accept
     ip6 nexthdr icmpv6 icmpv6 type $icmpv6_basic limit rate 1/second burst 5 packets accept
-    ip6 nexthdr icmpv6 icmpv6 type $icmpv6_slaac hoplimit 255 accept
+    icmpv6 type $icmpv6_slaac limit rate 1/second burst 5 packets ip6 hoplimit 255 accept
 
     # Rules for all interfaces
     tcp dport { 80, 443 } accept                          # Allow http and https for all interfaces