diff --git a/README.md b/README.md
index e69de29..371a236 100644
--- a/README.md
+++ b/README.md
@@ -0,0 +1,4 @@
+## To DO
+- [ ] Set statick IP's
+- [ ] Caddy reverse proxy for services
+- [ ] Setup Gates (MC, NarniePVE) 
diff --git a/my-rules.json b/my-rules.json
index 6f41755..e38ed18 100644
--- a/my-rules.json
+++ b/my-rules.json
@@ -1,4 +1,3 @@
-// Example/default ACLs for unrestricted connections.
 {
 	// Define the tags which can be applied to devices and by which users.
 	"tagOwners": {
@@ -14,14 +13,13 @@
 	// Tailscale IP addresses, and subnet ranges.
 	"acls": [
 		// Allow all connections.
-		// Comment this section out if you want to define specific restrictions.
 		// {"action": "accept", "src": ["*"], "dst": ["*:*"]},
 
 		// Random can
 		{"action": "accept", "src": ["tag:Random"], "dst": ["*:*"]}, 
 	
 		// Host can
-		{"action": "accept", "src": ["tag:Host"], "dst": ["tag:Service":*]},
+		{"action": "accept", "src": ["tag:Host"], "dst": ["tag:Service:*"]},
 
 		// Hidden serves
 		{"action": "accept", "src": ["*"], "dst": ["tag:Hidden:*"]},
@@ -57,20 +55,24 @@
 		// Allow all users to SSH into their own devices in check mode.
 		// Comment this section out if you want to define specific restrictions.
 		{
-			"action": "check",
-			"src":    ["autogroup:member"],
-			"dst":    ["autogroup:self"],
+			"action": "accept",
+			"src":    ["tag:Random"],
+			"dst":    ["autogroup:taged"],
 			"users":  ["autogroup:nonroot", "root"],
 		},
 	],
 
 	// Test access rules every time they're saved.
-	// "tests": [
-	//  	{
-	//  		"src": "alice@example.com",
-	//  		"accept": ["tag:example"],
-	//  		"deny": ["100.101.102.103:443"],
-	//  	},
-	// ],
+	 "tests": [
+	  	{
+	  		"src": "tag:Bridge",
+	  		"accept": ["tag:Random:80"],
+	  		"deny": ["tag:Host:80"],
+	  	},
+		{
+			"src": "tag:Random",
+			"accept": ["tag:Bridge:80", "tag:Host:80"],
+		},
+	 ],
 }