diff --git a/packer/rootfs/etc/nftables.conf b/packer/rootfs/etc/nftables.conf
index e16a5de..ceb2b26 100644
--- a/packer/rootfs/etc/nftables.conf
+++ b/packer/rootfs/etc/nftables.conf
@@ -13,12 +13,9 @@ table inet filter {
 		# Accept traffic originated from us.
 		ct state { established, related } accept;
 
-		# Accept neighbour discovery otherwise IPv6 connectivity breaks.
-		ip6 nexthdr icmpv6 icmpv6 type { nd-neighbor-solicit, nd-router-advert, nd-neighbor-advert } accept;
-
-		# Accept all ICMP types.
-		ip protocol icmp accept;
-		ip6 nexthdr icmpv6 accept;
+		# Accept ICMP and ICMPv6 traffic.
+		meta l4proto icmp accept;
+		meta l4proto ipv6-icmp accept;
 
 		# Accept SSH traffic.
 		tcp dport 122 accept;