diff --git a/live_exam_os/config/boot_hooks/firewall b/live_exam_os/config/boot_hooks/firewall
index e09fac389465dea0ba1bd873757cc87a6ee59050..15d0e09a634f79a0d53d9514e6bf64a7fc456486 100755
--- a/live_exam_os/config/boot_hooks/firewall
+++ b/live_exam_os/config/boot_hooks/firewall
@@ -4,13 +4,20 @@
 
 firewall ()
 {
+    # Block all incoming and outgoing traffic
     ufw default deny incoming
     ufw default deny outgoing
+    # Allow outgoing http and https traffic
     ufw allow out from any to $1 port 80
     ufw allow out from any to $1 port 443
+    # Allow outgoing traffic to nexus-server API
     ufw allow out from any to $1 port $2
+    # Allow outgoing ntp traffic
+    # ufw allow out from any to any port 123 proto udp
+    # Allow outgoing traffic to nexus VMs (Spice)
     ufw allow out from any to $1 port 1025:65535 proto tcp
     ufw allow out from any to $1 port 1025:65535 proto udp
+
     ufw enable
 }
 
diff --git a/live_exam_os/config/packages.list.chroot b/live_exam_os/config/packages.list.chroot
index 0350e41c0304873baa16408c52ea1cc5db19d326..352dba94dda4a0d5561613667949d4975a8f999f 100644
--- a/live_exam_os/config/packages.list.chroot
+++ b/live_exam_os/config/packages.list.chroot
@@ -11,4 +11,4 @@ virt-viewer
 firmware-iwlwifi
 network-manager
 network-manager-gnome
-brightnessctl
+#systemd-timesyncd