diff --git a/hosts/default/configuration.nix b/hosts/default/configuration.nix
index 4965776..e26b6e6 100644
--- a/hosts/default/configuration.nix
+++ b/hosts/default/configuration.nix
@@ -165,7 +165,6 @@
   services.openssh.enable = true;
 
   # Open ports in the firewall.
-  networking.firewall.allowedTCPPorts = [80 443 7860];
   # networking.firewall.allowedUDPPorts = [ ... ];
   # Or disable the firewall altogether.
   # networking.firewall.enable = false;
diff --git a/modules/nixos/networking/default.nix b/modules/nixos/networking/default.nix
index 8829fc1..1a53783 100644
--- a/modules/nixos/networking/default.nix
+++ b/modules/nixos/networking/default.nix
@@ -9,7 +9,10 @@ _: {
 
     nftables.enable = true;
 
-    firewall.trustedInterfaces = ["incusbr0" "virbr0"];
+    firewall = {
+      allowedTCPPorts = [80 443];
+      trustedInterfaces = ["incusbr0" "virbr0"];
+    };
 
     extraHosts = ''
       185.199.108.133 raw.githubusercontent.com