diff --git a/cookbooks/firewall/templates/default/iptables.erb b/cookbooks/firewall/templates/default/iptables.erb
index b829e0c..ce3f229 100644
--- a/cookbooks/firewall/templates/default/iptables.erb
+++ b/cookbooks/firewall/templates/default/iptables.erb
@@ -18,6 +18,9 @@
 
 -A INPUT -i lo -j ACCEPT
 
+# Everybody need to accept SSH from reverseproxy
+-A INPUT -s <%= node['peers']['reverseproxy'] %> -p tcp -m state --state NEW --dport 22 -j ACCEPT
+
 <%= node['firewall'] %>
 <%= render 'iptables-filter.erb' %>
 
--
libgit2 0.21.2