diff --git a/apparmor.d/groups/virt/k3s b/apparmor.d/groups/virt/k3s
index d8d5180c..293e24d8 100644
--- a/apparmor.d/groups/virt/k3s
+++ b/apparmor.d/groups/virt/k3s
@@ -24,8 +24,7 @@ profile k3s @{exec_path} flags=(complain) {
   capability sys_resource,
 
   ptrace peer=@{profile_name},
-  ptrace (read) peer=unconfined,
-  ptrace (read) peer=cri-containerd.apparmor.d,
+  ptrace (read) peer={cri-containerd.apparmor.d,k3s//xtables-nft-multi,unconfined},
 
   network inet dgram,
   network inet6 dgram,
@@ -149,6 +148,7 @@ profile k3s @{exec_path} flags=(complain) {
   @{sys}/module/apparmor/parameters/enabled r,
 
   /dev/kmsg r,
+  /dev/pts/[0-9]* rw,
 
   profile xtables-nft-multi flags=(complain) {
     include <abstractions/base>