diff --git a/tp-cloud/terraform/modules/network/main.tf b/tp-cloud/terraform/modules/network/main.tf
index 41e1b55..1ae9c7f 100644
--- a/tp-cloud/terraform/modules/network/main.tf
+++ b/tp-cloud/terraform/modules/network/main.tf
@@ -6,34 +6,35 @@ resource "google_compute_network" "vpc" {
 
 # Sous-réseau
 # front-end
-resource "google_compute_subnetwork" "front-end" {
-  name          = "front-end"
+resource "google_compute_subnetwork" "frontend" {
+  name          = "frontend-subnet"
   network       = google_compute_network.vpc.id
   ip_cidr_range = "10.0.1.0/24"
   region        = "europe-west1"
 }
 
 # back-end
-resource "google_compute_subnetwork" "back-end" {
-  name          = "back-end"
+resource "google_compute_subnetwork" "backend" {
+  name          = "backend-subnet"
   network       = google_compute_network.vpc.id
-  ip_cidr_range = "10.0.1.0/24"
+  ip_cidr_range = "10.0.2.0/24"
   region        = "europe-west1"
 }
 
 # data-base
-resource "google_compute_subnetwork" "data-base" {
-  name          = "data-base"
+resource "google_compute_subnetwork" "database" {
+  name          = "database-subnet"
   network       = google_compute_network.vpc.id
-  ip_cidr_range = "10.0.1.0/24"
+  ip_cidr_range = "10.0.3.0/24"
   region        = "europe-west1"
 }
 
 
+
 # Règles de Pare-feu
 
 #    - HTTP/HTTPS vers frontend
-resource "google_compute_firewall" "allow-http" {
+resource "google_compute_firewall" "allow_http" {
   name    = "allow-http"
   network = google_compute_network.vpc.id
 
@@ -43,12 +44,12 @@ resource "google_compute_firewall" "allow-http" {
   }
 
   source_ranges = ["0.0.0.0/0"]
-  target_tags   = ["front-end"]
+  target_tags   = ["frontend"]
 }
 
 #    - SSH vers toutes les instances
-resource "google_compute_firewall" "to-instances" {
-  name    = "to-instances"
+resource "google_compute_firewall" "allow_ssh" {
+  name    = "allow-ssh"
   network = google_compute_network.vpc.id
 
   allow {
@@ -57,11 +58,12 @@ resource "google_compute_firewall" "to-instances" {
   }
 
   source_ranges = ["0.0.0.0/0"]
+  target_tags   = ["ssh"]
 }
 
 #    - Port 8000 de frontend vers backend
-resource "google_compute_firewall" "front-back" {
-  name    = "front-back"
+resource "google_compute_firewall" "frontend_to_backend" {
+  name    = "frontend-to-backend"
   network = google_compute_network.vpc.id
 
   allow {
@@ -69,13 +71,14 @@ resource "google_compute_firewall" "front-back" {
     ports    = ["8000"]
   }
 
-  source_tags = ["front-end"]
-  target_tags = ["back-end"]
+  source_tags = ["frontend"]
+  target_tags = ["backend"]
 }
 
+
 #    - Port 3306 de backend vers database
-resource "google_compute_firewall" "back-base" {
-  name    = "back-base"
+resource "google_compute_firewall" "backend_to_database" {
+  name    = "backend-to-database"
   network = google_compute_network.vpc.id
 
   allow {
@@ -83,7 +86,6 @@ resource "google_compute_firewall" "back-base" {
     ports    = ["3306"]
   }
 
-  source_tags = ["back-end"]
-  target_tags = ["data-base"]
+  source_tags = ["backend"]
+  target_tags = ["database"]
 }
-