diff --git a/menu/menu-ufw b/menu/menu-ufw
new file mode 100644
index 0000000..9ee78c9
--- /dev/null
+++ b/menu/menu-ufw
@@ -0,0 +1,50 @@
+###menu
+sudo cat > /bin/menu-ufw <<- "EOF"
+#!/bin/bash
+while : ; do
+choix=$(whiptail --title "Raspbian Proyect HP3ICC Menu UFW Firewall" --menu "Nota: puede agregar o remover puertos uno a uno , o agregar multiples puertos separados por coma, ejemplo: 80,9000,62031" 20 75 11 \
+1 " Enable Firewall" \
+2 " Disable Firewall " \
+3 " List Port open  " \
+4 " List IP auto reject " \
+5 " Add or Remove port in " \
+6 " Protection standard (all out open)  " \
+7 " Protection strong (only 53,80,443 out open)  " \
+8 " Menu Principal " 3>&1 1>&2 2>&3)
+exitstatus=$?
+#on recupere ce choix
+#exitstatus=$?
+if [ $exitstatus = 0 ]; then
+    echo "Your chosen option:" $choix
+else
+    echo "You chose cancel."; break;
+fi
+# case : action en fonction du choix
+case $choix in
+1)
+ufw enable && sudo systemctl stop fail2ban.service && sudo systemctl start fail2ban.service && sudo systemctl enable fail2ban.service;;
+2)
+ufw disable && sudo systemctl stop fail2ban.service && sudo systemctl disable fail2ban.service;;
+3)
+ufw status | grep ALLOW >> /tmp/port0.txt && nano /tmp/port0.txt && rm /tmp/port0.txt;;
+4)
+ufw status | grep REJECT >> /tmp/port0.txt && nano /tmp/port0.txt && rm /tmp/port0.txt;;
+5)
+sh /bin/auto-ufw.sh ;;
+6)
+sudo ufw delete allow out to any port 53
+sudo ufw delete allow out to any port 80
+sudo ufw delete allow out to any port 443
+sudo ufw default allow outgoing ;;
+7)
+sudo ufw allow out to any port 53
+sudo ufw allow out to any port 80
+sudo ufw allow out to any port 443 ;;
+8)
+break;
+esac
+done
+exit 0
+
+EOF
+chmod +x /bin/menu-ufw