diff --git a/roles/configure_iptables/templates/ip6tables.rules b/roles/configure_iptables/templates/ip6tables.rules
index 5b7a49c..677e074 100644
--- a/roles/configure_iptables/templates/ip6tables.rules
+++ b/roles/configure_iptables/templates/ip6tables.rules
@@ -48,3 +48,10 @@ COMMIT
 {% endfor %}
 -A FORWARD -o {{ ansible_default_ipv6.interface }} -j REJECT
 COMMIT
+*nat
+:PREROUTING ACCEPT [0:0]
+:INPUT ACCEPT [0:0]
+:OUTPUT ACCEPT [0:0]
+:POSTROUTING ACCEPT [0:0]
+-A POSTROUTING -o mullvad -j MASQUERADE
+COMMIT
diff --git a/roles/install_openvpn/files/mullvad-up.sh b/roles/install_openvpn/files/mullvad-up.sh
index 75a9632..9a339f0 100755
--- a/roles/install_openvpn/files/mullvad-up.sh
+++ b/roles/install_openvpn/files/mullvad-up.sh
@@ -3,5 +3,6 @@
 sleep 3
 echo Reroute via $route_vpn_gateway
 ip route replace 0.0.0.0/0 via $route_vpn_gateway proto static table ffmyk
+ip -6 route replace default dev $dev proto static table ffmyk
 
 exit 0