diff --git a/manifests/firewall/iptables.pp b/manifests/firewall/iptables.pp
index 756f142..bbb8d75 100644
--- a/manifests/firewall/iptables.pp
+++ b/manifests/firewall/iptables.pp
@@ -8,13 +8,13 @@ class confdroid_apache::firewall::iptables (
 ) inherits confdroid_apache::params {
   if $ae_manage_fw == true {
     firewall { "${ae_order_no}${ae_http_port} tcp http port ${ae_http_port}":
-      proto => ['tcp','udp'],
+      proto => 'all',
       dport => $ae_http_port,
       jump  => 'accept',
   }
 
     firewall { "${ae_order_no}${ae_https_port} tcp http port ${ae_https_port}":
-      proto => ['tcp','udp'],
+      proto => 'all',
       dport => $ae_https_port,
       jump  => 'accept',
     }