diff --git a/99.clean.yml b/99.clean.yml
index 06934be..f2009bb 100644
--- a/99.clean.yml
+++ b/99.clean.yml
@@ -28,7 +28,10 @@
     - "/etc/systemd/system/docker.service.requires/"
 
   - name: 清理 iptables
-    shell: iptables -F && iptables -X && iptables -F -t nat && iptables -X -t nat
+    shell: "iptables -F && iptables -X \
+	&& iptables -F -t nat && iptables -X -t nat \
+	&& iptables -F -t raw && iptables -X -t raw \
+	&& iptables -F -t mangle && iptables -X -t mangle"
 
   - name: 清理网络
     shell: "ip link del docker0; ip link del tunl0; systemctl restart networking"
diff --git a/roles/docker/tasks/main.yml b/roles/docker/tasks/main.yml
index 9f58450..9b732f5 100644
--- a/roles/docker/tasks/main.yml
+++ b/roles/docker/tasks/main.yml
@@ -27,7 +27,10 @@
   shell: systemctl enable docker
 
 - name: flush-iptables
-  shell: iptables -F && iptables -X && iptables -F -t nat && iptables -X -t nat
+  shell: "iptables -F && iptables -X \
+        && iptables -F -t nat && iptables -X -t nat \
+        && iptables -F -t raw && iptables -X -t raw \
+        && iptables -F -t mangle && iptables -X -t mangle"
 
 - name: start-docker
   shell: systemctl restart docker