Fix ICMP latency: re-anchor ESTABLISHED,RELATED to FORWARD position 1 on every health tick

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

api/app.py

@@ -526,9 +526,10 @@ def health_monitor_loop():
         with app.app_context():
             health_result = perform_health_check()
             health_history.appendleft(health_result)
-            
-            # Publish health check event
             service_bus.publish_event(EventType.HEALTH_CHECK, 'api', health_result)
+            # Re-anchor stateful rule every cycle: wg0 PostUp uses -I FORWARD which
+            # pushes ESTABLISHED,RELATED down below per-peer DROPs on restart.
+            firewall_manager.ensure_forward_stateful()
         time.sleep(60)  # Check every 60 seconds
 
 # Start health monitor thread