diff --git a/templates/ip6tables.conf.j2 b/templates/ip6tables.conf.j2
index bc2d1b38ce90cc401cedb1976c800ec93742346e..a608840754f00f9876d7e61d80686ae9362bc52e 100644
--- a/templates/ip6tables.conf.j2
+++ b/templates/ip6tables.conf.j2
@@ -5,13 +5,45 @@
 :OUTPUT DROP [0:0]
 :LOGGING - [0:0]
 ## INPUT chain
+# Ne pas casser les connexions etablies
+-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 # Autoriser loopback
 -A INPUT -i lo -j ACCEPT
+# Autoriser les paquets ICMP v6
+-A INPUT -p ipv6-icmp -j ACCEPT
+# Autoriser le DHCPv6 sur le lien local uniquement
+-A INPUT -m state --state NEW -m udp -p udp -s fe80::/10 --dport 546 -j ACCEPT
+# SSH
+-A INPUT -p tcp -m tcp --dport 2222 -j ACCEPT
 # Log incoming traffic blocked by IPTables
 -A INPUT -j LOGGING
 ## OUTPUT chain
+# Ne pas casser les connexions etablies
+-A OUTPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
 # Autoriser loopback
 -A OUTPUT -o lo -j ACCEPT
+# Accept all ICMP v6 packets
+-A OUTPUT -p ipv6-icmp -j ACCEPT
+# SSH
+-A OUTPUT -p tcp -m tcp --dport 2222 -j ACCEPT
+# WEB
+-A OUTPUT -p tcp -m tcp --dport 80 -j ACCEPT
+-A OUTPUT -p tcp -m tcp --dport 443 -j ACCEPT
+# DNS
+-A OUTPUT -p tcp -m tcp --dport 53 -j ACCEPT
+-A OUTPUT -p udp -m udp --dport 53 -j ACCEPT
+# NTP Out
+-A OUTPUT -p udp -m udp --dport 123 -j ACCEPT
+# SMTP Postfix
+-A OUTPUT -p tcp -m tcp --dport 25 -j ACCEPT
+-A OUTPUT -p tcp -m tcp --dport 465 -j ACCEPT
+-A OUTPUT -p tcp -m tcp --dport 587 -j ACCEPT
+# WhoIs
+-A OUTPUT -p tcp -m tcp --dport 43 -j ACCEPT
+# DHCPv6
+-A OUTPUT -p udp -m udp -s fe80::/10 --dport 547 -j ACCEPT
+# GPG
+-A OUTPUT -p udp -m udp --dport 11371 -j ACCEPT
 # Log outgoing traffic blocked by IPTables
 -A OUTPUT -j LOGGING
 ## LOGGING chain