diff --git a/machines/dev/fedi203/woodpecker.nix b/machines/dev/fedi203/woodpecker.nix
index 677559d3..98558089 100644
--- a/machines/dev/fedi203/woodpecker.nix
+++ b/machines/dev/fedi203/woodpecker.nix
@@ -203,18 +203,18 @@
 
   networking = {
     nftables.enable = lib.mkForce false;
-  };
-
-  networking.firewall.allowedTCPPorts = [
-    22
-    80
-    443
-  ];
-
-  # This is needed for podman to be able to talk over dns
-  networking.firewall.interfaces."podman0" = {
-    allowedUDPPorts = [ 53 ];
-    allowedTCPPorts = [ 53 ];
+    firewall = {
+      allowedTCPPorts = [
+        22
+        80
+        443
+      ];
+      # needed for podman to be able to talk over dns
+      interfaces."podman0" = {
+        allowedUDPPorts = [ 53 ];
+        allowedTCPPorts = [ 53 ];
+      };
+    };
   };
 
   virtualisation.podman = {