diff --git a/ansible/roles/sucs-firewall/templates/firewall-rules b/ansible/roles/sucs-firewall/templates/firewall-rules
index 31b8391c4e56fcb19db6c85698ff62cb4ccdcf67..fa198868d4f6166f61f56a0912ce6e6a9c63fe48 100644
--- a/ansible/roles/sucs-firewall/templates/firewall-rules
+++ b/ansible/roles/sucs-firewall/templates/firewall-rules
@@ -428,12 +428,10 @@ $IPT -A FORWARD -d 137.44.10.81 -p tcp -m state --state NEW -m tcp --dport 80 -j
 $IPT -A FORWARD -d 137.44.10.81 -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT
 $IPT -A FORWARD -d 137.44.10.81 -p tcp -m state --state NEW -m tcp --dport 4567 -j ACCEPT #image reg
 
-# ~andy VM 1/2
-$IPT -A FORWARD -d 137.44.10.82 -p tcp -m state --state NEW -m tcp --dport 3389 -j ACCEPT
-$IPT -A FORWARD -d 137.44.10.82 -p udp -m state --state NEW -m udp --dport 3389 -j ACCEPT
-
-# ~andy VM 2/2
-$IPT -A FORWARD -d 137.44.10.84 -p tcp -m state --state NEW -m tcp --dport 443 -j ACCEPT
+# ~andy VM
+$IPT -A FORWARD -d 137.44.10.82 -p tcp -m state --state NEW -m tcp --dport 4567 -j ACCEPT
+$IPT -A FORWARD -d 137.44.10.82 -p udp -m state --state NEW -m udp --dport 4567 -j ACCEPT
+$IPT -A FORWARD -d 137.44.10.82 -p udp -m state --state NEW -m udp --dport 25565 -j ACCEPT
 
 # Xtreme radio VM, icecast2 running on port 80
 $IPT -A FORWARD -d 137.44.10.85 -p tcp -m state --state NEW -m tcp --dport 80 -j ACCEPT