Configure csf firewall in Proxmox

We have a Proxmox 3.1 server working perfectly (debian) and want to install csf firewall (with its IDS) so we can protect the host node without interfering the traffic of the VMs. We also want to use some features like lock some countries in csf (very easy) to the node and also to the VMs if possible. We readed that we should add this lines to /etc/csf/[login to view URL]: iptables -A FORWARD -d [login to view URL] -j ACCEPT iptables -A FORWARD -d [login to view URL] -j ACCEPT iptables -A FORWARD -d [login to view URL] -j ACCEPT iptables -A FORWARD -d [login to view URL] -j ACCEPT iptables -A FORWARD -d [login to view URL] -j ACCEPT iptables -A FORWARD -d [login to view URL] -j ACCEPT But when we enable csf connectivity to VMs doesn't work and the ping breaks, this is the network config (IPs are modified): auto lo iface lo inet loopback # device: eth0 auto eth0 iface eth0 inet static address [login to view URL] netmask [login to view URL] pointopoint [login to view URL] gateway [login to view URL] # for single IPs auto vmbr0 iface vmbr0 inet static address [login to view URL] netmask [login to view URL] bridge_ports none bridge_stp off bridge_fd 0 up ip route add [login to view URL] dev vmbr0 # for a subnet auto vmbr1 iface vmbr1 inet static address [login to view URL] netmask [login to view URL] bridge_ports none bridge_stp off bridge_fd 0 Virtualization we are using is KVM mainly, the network is routed with subnet.. This is a fast task for an expert. We will require the list of commants used or a text indicating what has been done, so we can apply this config to another server. Thanks