diff --git a/doc/puppet_classes/puppet_cd_3A_3Afirewall_3A_3Aiptables.html b/doc/puppet_classes/puppet_cd_3A_3Afirewall_3A_3Aiptables.html
index 73b9054..bdaacbf 100644
--- a/doc/puppet_classes/puppet_cd_3A_3Afirewall_3A_3Aiptables.html
+++ b/doc/puppet_classes/puppet_cd_3A_3Afirewall_3A_3Aiptables.html
@@ -146,7 +146,8 @@
 48
 49
 50
-51</pre>
+51
+52</pre>
       </td>
       <td>
         <pre class="code"><span class="info file"># File 'manifests/firewall/iptables.pp', line 6</span>
@@ -167,9 +168,10 @@ class puppet_cd::firewall::iptables (
     }
     if $pt_use_r10k_webhook == true {
       firewall { &quot;3${pt_r10k_webhook_port} open port ${pt_r10k_webhook_port}&quot;:
-        proto =&gt; &#39;tcp&#39;,
-        dport =&gt; $pt_r10k_webhook_port,
-        jump  =&gt; &#39;accept&#39;,
+        proto  =&gt; &#39;tcp&#39;,
+        source =&gt; &#39;10.0.1.0/24&#39;,
+        dport  =&gt; $pt_r10k_webhook_port,
+        jump   =&gt; &#39;accept&#39;,
       }
     }
   }
diff --git a/manifests/firewall/iptables.pp b/manifests/firewall/iptables.pp
index 91f61e4..ad5c395 100644
--- a/manifests/firewall/iptables.pp
+++ b/manifests/firewall/iptables.pp
@@ -19,9 +19,10 @@ class puppet_cd::firewall::iptables (
     }
     if $pt_use_r10k_webhook == true {
       firewall { "3${pt_r10k_webhook_port} open port ${pt_r10k_webhook_port}":
-        proto => 'tcp',
-        dport => $pt_r10k_webhook_port,
-        jump  => 'accept',
+        proto  => 'tcp',
+        source => '10.0.1.0/24',
+        dport  => $pt_r10k_webhook_port,
+        jump   => 'accept',
       }
     }
   }