diff --git a/files/eggsample.conf b/files/eggsample.conf
new file mode 100644
index 0000000000000000000000000000000000000000..e69de29bb2d1d6434b8b29ae775ad8c2e48c5391
diff --git a/manifests/init.pp b/manifests/init.pp
index 2d013012716fcf8e37c137ae61981b0fc5cfa914..1a8349759069e19bfd45171bec3386637157747f 100644
--- a/manifests/init.pp
+++ b/manifests/init.pp
@@ -28,9 +28,21 @@
 #
 class egg (
 ) {
-  ::server_firewall::rules_file { '30-permit_http_https.rules':
-    content => epp("${module_name}/permit_http_https.rules.epp", {
-        module_name => $module_name,
-    }),
+  include egg::nginx
+  include egg::postgres
+  include egg::nodejs
+
+  server_firewall::address_set { 'liu_vpn':
+    addresses => [
+      '10.243.0.0/16',
+    ],
+  }
+
+  firewalld_rich_rule { 'allow ssh via vpn':
+    action  => 'accept',
+    service => 'ssh',
+    source  => { 'ipset' => 'liu_vpn_v4', },
+    family  => 'ipv4',
+    zone    => 'liu',
   }
 }