diff --git a/inventory/group_vars/os-proxies b/inventory/group_vars/os-proxies
index 56ba6d05cf..17a19316ad 100644
--- a/inventory/group_vars/os-proxies
+++ b/inventory/group_vars/os-proxies
@@ -14,4 +14,10 @@ tcp_ports: [
     22623,
     # 9941 is closed generally, is for the inbound fedmsg and is covered in
     # custom_rules
- ]
+]
+
+custom_rules: [
+    # Needed for keepalived
+    '-A INPUT -d 224.0.0.0/8 -j ACCEPT',
+    '-A INPUT -p vrrp -j ACCEPT',
+]
diff --git a/roles/keepalived/templates/keepalived.conf.j2 b/roles/keepalived/templates/keepalived.conf.j2
index e2626c7ccf..b747dd2a8c 100644
--- a/roles/keepalived/templates/keepalived.conf.j2
+++ b/roles/keepalived/templates/keepalived.conf.j2
@@ -31,7 +31,7 @@ vrrp_instance VI_1 {
 }
 
 {% if keepalived2_ipaddress %}
-vrrp_instance VI_1 {
+vrrp_instance VI_2 {
   # initial state
   state MASTER
   interface {{ keepalived2_interface }}