diff --git a/infra/common/nixos/networking.nix b/infra/common/nixos/networking.nix
index 28e34208..0872dad0 100644
--- a/infra/common/nixos/networking.nix
+++ b/infra/common/nixos/networking.nix
@@ -28,8 +28,8 @@ in
         ## Procolix-made ruleset.
         firewall.enable = false;
         nftables = {
-          enable = false;
-          # rulesetFile = ./nftables-ruleset.nft;
+          enable = true;
+          rulesetFile = ./nftables-ruleset.nft;
         };
       }
 
diff --git a/machines/dev/fedi203/woodpecker.nix b/machines/dev/fedi203/woodpecker.nix
index 4b3415df..2fbc6f32 100644
--- a/machines/dev/fedi203/woodpecker.nix
+++ b/machines/dev/fedi203/woodpecker.nix
@@ -269,6 +269,10 @@
       };
   };
 
+  networking = {
+    nftables.enable = lib.mkForce false;
+  };
+
   networking.firewall.allowedTCPPorts = [
     22
     80