diff --git a/roles/firewall-vpn-r/files/ferm.conf b/roles/firewall-vpn-r/files/ferm.conf
index 7e274cc..899911f 100644
--- a/roles/firewall-vpn-r/files/ferm.conf
+++ b/roles/firewall-vpn-r/files/ferm.conf
@@ -9,7 +9,7 @@
 
 @def $NET_ADM=192.168.99.112/24;
 @def $NET_VPN=192.168.0.51/24;
-@def $NET_EXT=192.168.1.2/30;
+@def $NET_EXT=192.168.1.2/24;
 
 table filter {
     chain INPUT {
@@ -23,9 +23,8 @@ table filter {
         interface lo ACCEPT;
 
         # allow SSH connections
-        #interface ($DEV_VPN) {
 	proto tcp dport ssh ACCEPT;
-	#}
+	
 
         # allow DNS connections
 	proto udp sport domain ACCEPT;
@@ -50,22 +49,13 @@ table filter {
 #	proto (udp tcp) dport domain ACCEPT;
 	#}
 
-	# autoriser supervision
-	proto udp sport 161 ACCEPT;
 
 	# autoriser NTP
 	proto udp sport 123 ACCEPT;
 
-        # respond to ping
-        proto icmp mod limit limit 30/minut ACCEPT; 
-
     }
     chain OUTPUT {
         policy ACCEPT;
-
-        # connection tracking
-        # mod state state INVALID DROP;
-        # mod state state (ESTABLISHED RELATED) ACCEPT;
     }
     chain FORWARD {
         policy ACCEPT;