diff --git a/group_vars/ldap.yml b/group_vars/ldap.yml
index eb8db91b..219b3acb 100644
--- a/group_vars/ldap.yml
+++ b/group_vars/ldap.yml
@@ -23,6 +23,11 @@ ufw_rules:
     protocol: tcp
     comment: 'lldap'
     from_ip: 192.168.2.0/24
+  - rule: allow
+    to_port: "{{ lldap_http_port }}"
+    protocol: tcp
+    comment: 'lldap'
+    from_ip: 10.25.0.0/24
   - rule: allow
     to_port: 3890
     protocol: tcp