diff --git a/common.yml b/common.yml
index 2947b16..0e74cc2 100644
--- a/common.yml
+++ b/common.yml
@@ -73,12 +73,14 @@
       - rsyslog
       - sendmail
       - unattended-upgrades
+      - privoxy
+      - iptables-persistent
       
   - name: Unattended-upgrades configured
     template: src=50unattended-upgrades.j2 dest=/etc/apt/apt.conf.d/50unattended-upgrades owner=root group=root mode=644
 
   - name: Periodic upgrades configured
-    template: src=10periodic.j2 dest=/etc/apt/apt.conf.d/10periodic owner=root group=root mode=644    
+    template: src=10periodic.j2 dest=/etc/apt/apt.conf.d/10periodic owner=root group=root mode=644
   
   handlers:
     - name: restart auditd
@@ -88,9 +90,9 @@
       service: name=rsyslog state=restarted
       
     - name: restart ssh
-      service: name=ssh state=restarted     
+      service: name=ssh state=restarted
       
     - name: flush routing cache
       shell: echo 1 > /proc/sys/net/ipv4/route/flush     
 
-    
\ No newline at end of file
+    
diff --git a/config.cfg b/config.cfg
index e69a907..ce803d9 100644
--- a/config.cfg
+++ b/config.cfg
@@ -13,10 +13,6 @@ easyrsa_reinit_existent: False
 server_name: example.com
 server_ip: "{{ ansible_ssh_host }}"
 
-# specify users that you need
-server_name: www.ivlis.me
-server_ip: "{{ ansible_ssh_host }}"
-
 users:
   - mr.smith
   - mrs.smith
diff --git a/features.yml b/features.yml
new file mode 100644
index 0000000..c9bc5ed
--- /dev/null
+++ b/features.yml
@@ -0,0 +1,33 @@
+---
+
+- name: Other features
+  hosts: vpn-host
+  gather_facts: false
+  remote_user: root
+  vars_files:
+    - config.cfg    
+  
+  tasks:
+  - name: Loopback for services configured
+    template: src=10-loopback-services.cfg.j2 dest=/etc/network/interfaces.d/10-loopback-services.cfg
+    
+  - name: Loopback included into the network config
+    lineinfile: dest=/etc/network/interfaces line='source /etc/network/interfaces.d/10-loopback-services.cfg' state=present
+    
+  - name: Loopback is running
+    shell: ifdown lo:100 && ifup lo:100
+    
+  # Privoxy  
+  
+  - name: Privoxy configured
+    template: src=privoxy_config.j2 dest=/etc/privoxy/config
+    notify:
+      - restart privoxy
+      
+  - name: Privoxy enabled and started
+    service: name=privoxy state=started enabled=yes
+    
+  handlers:
+    - name: restart privoxy
+      service: name=privoxy state=restarted          
+    
diff --git a/vpn.yml b/vpn.yml
index 5efb69c..90d7521 100644
--- a/vpn.yml
+++ b/vpn.yml
@@ -25,10 +25,13 @@
     with_items:
       - apparmor
       - strongswan
+      - netfilter-persistent
 
   - name: Configure iptables so IPSec traffic can traverse the tunnel
     iptables: table=nat chain=POSTROUTING source=10.0.0.0/24 jump=MASQUERADE
-
+    notify:
+    - save iptables
+    
   - name: Setup the ipsec.conf file from our template
     template: src=ipsec.conf.j2 dest=/etc/ipsec.conf owner=root group=root mode=644
     notify:
@@ -148,3 +151,6 @@
 
     - name: restart apparmor
       service: name=apparmor state=restarted
+      
+    - name: save iptables
+      command: service netfilter-persistent save