diff --git a/salt/firewall/priv-stateful.sh b/salt/firewall/priv-stateful.sh
index 0ed2d6c..4167cb4 100644
--- a/salt/firewall/priv-stateful.sh
+++ b/salt/firewall/priv-stateful.sh
@@ -12,8 +12,9 @@ if echo "$IFACE" | grep priv >/dev/null; then
     # loopback
     iptables -A FORWARD -i lo -j ACCEPT
     ip6tables -A FORWARD -i lo -j ACCEPT
-    # DHCP
-    iptables -A FORWARD -i $IFACE -p udp --dport 67 -j ACCEPT
+    # Trust priv
+    iptables -A FORWARD -i $IFACE -j ACCEPT
+    ip6tables -A FORWARD -i $IFACE -j ACCEPT
     # Deny by default
     iptables -A FORWARD -j REJECT
     ip6tables -A FORWARD -j REJECT