diff --git a/roles/exit-ip/tasks/main.yml b/roles/exit-ip/tasks/main.yml
index 8ef5daa..eef8b80 100644
--- a/roles/exit-ip/tasks/main.yml
+++ b/roles/exit-ip/tasks/main.yml
@@ -3,9 +3,12 @@
 - name: Install iptables-persistent
   apt: name=iptables-persistent
 
-- name: Enable IPv4 routing
+- name: Enable IPv4 routing (globally)
   sysctl: name=net.ipv4.ip_forward value=1 state=present
 
+- name: Enable IPv4 routing (primary interface)
+  sysctl: name=net.ipv4.conf.{{ ansible_default_ipv4.interface }}.forwarding value=1 state=present
+
 - name: Load nf_conntrack module
   modprobe: name=nf_conntrack