diff --git a/pkg/controllers/proxy/network_services_controller.go b/pkg/controllers/proxy/network_services_controller.go
index bd9e7210..780371e1 100644
--- a/pkg/controllers/proxy/network_services_controller.go
+++ b/pkg/controllers/proxy/network_services_controller.go
@@ -1423,11 +1423,11 @@ func (nsc *NetworkServicesController) syncHairpinIptablesRules() error {
 	}
 
 	// Apply the rules we need
-	for _, ruleArgs := range rulesNeeded {
+	for rule, ruleArgs := range rulesNeeded {
 		ruleExists := false
 		for _, ruleFromNode := range rulesFromNode {
-			_, ruleExists = rulesNeeded[ruleFromNode]
-			if ruleExists {
+			if rule == ruleFromNode {
+				ruleExists = true
 				break
 			}
 		}