diff --git a/manifests/system.pp b/manifests/system.pp
index cf02efba580c28e29546afb82881bb8072aab7c3..2226689d8055363360e9457f49ed5966555081f1 100644
--- a/manifests/system.pp
+++ b/manifests/system.pp
@@ -48,7 +48,7 @@ class analysator::system::nat {
     dport => '22',
     source => '! 130.236.254.0/24',
     proto => 'tcp',
-    action => 'reject',
+    jump => 'reject',
   }
 
   # CVE-2024-6387 ("regreSSHion")
@@ -58,8 +58,8 @@ class analysator::system::nat {
     dport => '22',
     source => '! 2001:6b0:17:f0a0::/64',
     proto => 'tcp',
-    action => 'reject',
-    provider => 'ip6tables',
+    jump => 'reject',
+    protocol => 'ip6tables',
   }
 
   firewall { '200 forward internal':
@@ -67,7 +67,7 @@ class analysator::system::nat {
     iniface  => $analysator::system::internal_iface,
     outiface => $analysator::system::public_iface,
     proto    => 'all',
-    action   => 'accept',
+    jump     => 'accept',
   }
 
   firewall { '201 forward internal':
@@ -75,7 +75,7 @@ class analysator::system::nat {
     outiface => $analysator::system::internal_iface,
     iniface  => $analysator::system::public_iface,
     proto    => 'all',
-    action   => 'accept',
+    jump     => 'accept',
   }
 
   firewall { '202 forward ib':
@@ -83,7 +83,7 @@ class analysator::system::nat {
     outiface => $analysator::system::public_iface,
     iniface  => $analysator::system::ib_iface,
     proto    => 'all',
-    action   => 'accept',
+    jump     => 'accept',
   }
 
   firewall { '203 forward ib':
@@ -91,7 +91,7 @@ class analysator::system::nat {
     outiface => $analysator::system::ib_iface,
     iniface  => $analysator::system::public_iface,
     proto    => 'all',
-    action   => 'accept',
+    jump     => 'accept',
   }