diff --git a/group_vars/ns.yml b/group_vars/ns.yml
index d22952f..5a6101f 100644
--- a/group_vars/ns.yml
+++ b/group_vars/ns.yml
@@ -1,6 +1,6 @@
 ---
 firewall_in:
-  - {proto: tcp, port: 22, from: [172.20.20.0/22, 62.78.229.26/32]}
+  - {proto: tcp, port: 22, from: [172.20.20.0/22, 212.149.248.65/32]}
   - {proto: tcp, port: 53}
   - {proto: udp, port: 53}
   - {proto: tcp, port: 80}
diff --git a/group_vars/shell.yml b/group_vars/shell.yml
index 55e4a34..f61151a 100644
--- a/group_vars/shell.yml
+++ b/group_vars/shell.yml
@@ -9,7 +9,7 @@ firewall_in:
   - {proto: tcp, port: 22}
   - {proto: tcp, port: 80}
   - {proto: tcp, port: 443}
-  - {proto: tcp, port: 9100, from: [62.78.229.26/32]}
+  - {proto: tcp, port: 9100, from: [212.149.248.65/32]}
 
 ssh_hostnames:
   - shell.foo.sh
diff --git a/roles/pf/files/pf.conf.gw_home b/roles/pf/files/pf.conf.gw_home
index 8a91465..8fe7df5 100644
--- a/roles/pf/files/pf.conf.gw_home
+++ b/roles/pf/files/pf.conf.gw_home
@@ -43,7 +43,7 @@ antispoof for vio1
 pass in quick on $int_if proto tcp from $int_net to self port ssh
 pass in quick on $ext_if proto tcp from 37.35.86.64/29 to self port ssh
 pass in quick on $ext_if proto tcp from 37.16.96.144/28 to self port ssh
-pass in quick on $ext_if proto tcp from 62.78.229.19/32 to self port ssh
+pass in quick on $ext_if proto tcp from 89.27.104.10/32 to self port ssh
 
 # node_exporter from internal network
 pass in quick on $int_if proto tcp from $int_net to self port 9100