table ip mytable_ipv4 {
	chain input {
		type filter hook input priority filter; policy drop;
		ct state established accept
		ct state related accept
		iif "lo" accept
		tcp dport 22 counter accept
		counter log drop
	}
}
table ip6 mytable_ipv6 {
	chain input {
		type filter hook input priority filter; policy drop;
		ct state established accept
		ct state related accept
		iif "lo" accept
		tcp dport 22 counter accept
		icmpv6 type { echo-request, nd-router-advert, nd-neighbor-solicit, nd-neighbor-advert } accept
		counter log drop
	}
}