diff --git a/assets/knockd.conf b/assets/knockd.conf
index 2f11a12..b37d6b1 100644
--- a/assets/knockd.conf
+++ b/assets/knockd.conf
@@ -19,7 +19,9 @@
       sequence    = 7000,8000,9000
       seq_timeout = 5
       # TODO do not limit port 22 to the ip as it don't work with 4G connection
-      start_command = ufw insert 1 allow from %IP% to any port 22
+      # start_command = ufw insert 1 allow from %IP% to any port 22
+      start_command = ufw allow ssh
       tcpflags    = syn
       cmd_timeout   = 600
-      stop_command  = ufw delete allow from %IP% to any port 22
+      # stop_command  = ufw delete allow from %IP% to any port 22
+      stop_command  = ufw delete allow ssh