diff --git a/gestion/gen_confs/firewall4.py b/gestion/gen_confs/firewall4.py
index f3ed60ce..9053839b 100755
--- a/gestion/gen_confs/firewall4.py
+++ b/gestion/gen_confs/firewall4.py
@@ -855,10 +855,10 @@ class firewall_zamok(firewall_base):
         chain = 'OUTPUT'
         self.add(table, chain , '-d 224.0.0.0/4 -j DROP')
         admin_vlan_chain = self.admin_vlan(table)
+        self.add(table, chain, '-m state --state RELATED,ESTABLISHED -j ACCEPT')
         for net in NETs['adm']:
             self.add(table, chain, '-d %s -j %s' % (net, admin_vlan_chain))
         self.add(table, chain, '-o lo -j ACCEPT')
-        self.add(table, chain, '-m state --state RELATED,ESTABLISHED -j ACCEPT')
         self.add(table, chain, '-j %s' % self.blacklist_output(table))
 
         return