diff --git a/modules/services/ssh.nix b/modules/services/ssh.nix
index 2f31c3f..efa0485 100644
--- a/modules/services/ssh.nix
+++ b/modules/services/ssh.nix
@@ -5,7 +5,7 @@
   services.openssh = {
     enable = true;
     allowSFTP = true;
-    openFirewall = false;
+    openFirewall = true;
     authorizedKeysInHomedir = false;
     settings = {
       PermitRootLogin = "no";
@@ -19,9 +19,6 @@
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHzUJnqCpbRxggjyIZo4KWnTyHobPdi/xXkN1/n/yIMD"
   ];
 
-  # enable ssh in the firewall
-  networking.firewall.allowedTCPPorts = [ 22 ];
-
   # enable fail2ban
   services.fail2ban.enable = true;
 }