diff --git a/hosts/containers/dn42/default.nix b/hosts/containers/dn42/default.nix
index a5ca1e5e..ae4b3ee8 100644
--- a/hosts/containers/dn42/default.nix
+++ b/hosts/containers/dn42/default.nix
@@ -173,26 +173,24 @@ in {
       template bgp dnpeers {
         local as 64699;
         ipv4 {
-          import all;
+          import filter {
+            if proto = "hq4" then reject;
+            accept;
+          };
           export filter {
-            if source = RTS_BGP then {
-              accept;
-            }
-            if proto = "hq4" then {
-              accept;
-            }
+            if source = RTS_BGP then accept;
+            if proto = "hq4" then accept;
             reject;
           };
         };
         ipv6 {
-          import all;
+          import filter {
+            if proto = "hq6" then reject;
+            accept;
+          };
           export filter {
-            if source = RTS_BGP then {
-              accept;
-            }
-            if proto = "hq6" then {
-              accept;
-            }
+            if source = RTS_BGP then accept;
+            if proto = "hq6" then accept;
             reject;
           };
         };