diff --git a/nodes/home/router.py b/nodes/home/router.py
index d54d230..708737e 100644
--- a/nodes/home/router.py
+++ b/nodes/home/router.py
@@ -86,6 +86,8 @@ nodes['home.router'] = {
             'forward': {
                 '50-router': [
                     'ct state { related, established } accept',
+                    'iifname enp1s0.1138 accept',
+                    'iifname enp1s0.2000 accept',
                     'ip6 nexthdr ipv6-icmp accept',
                     'tcp dport 22 accept',
                 ],
@@ -139,7 +141,6 @@ nodes['home.router'] = {
                 'password': vault.decrypt('encrypt$gAAAAABfr8Cq5M1hweeJTQAl0dLhFntdlw-QnkIYUQpY-_ycODVWOpyeAwjwOgWLSdsdXIUvqcoiXPZPV-BE12p5C42NGnj9r7sKYpoGz8xfuGIk6haMa2g='),
             },
             'nftables-rules.d': {
-                'inet filter forward iifname enp1s0.1138 accept',
                 'inet filter forward iifname enp1s0.1139 oifname $INTERFACE accept',
             },
         },