Thanks ,
But i have problem , please look image :

Why i have this rules but haven't services :
DNS , IPSeec , NTop , Proxy.
Also in Source address , Source interface i have <ANY> but i need limit access .
DNS - this is for dns proxy
IPSEC - This is for firewall rules, this is critical dont change
Ntop - This is your network monitoring on the interfaces.
http://serverip:3001Proxy - This is for squid, dansgaurdian, and clamav to proxy your web requests.
To edit these you will need to do it from the command line.