diff --git a/ada/services/firewalld.nix b/ada/services/firewalld.nix
index 0602c8d..3340688 100644
--- a/ada/services/firewalld.nix
+++ b/ada/services/firewalld.nix
@@ -3,8 +3,21 @@ _: {
     firewalld = {
       enable = true;
 
+      settings = {
+        IPv6_rpfilter = "strict";
+        CleanupModulesOnExit = true;
+        StrictForwardPorts = true;
+        logDenied = "off";
+        FlushAllOnReload = "yes";
+        ReloadPolicy = "DROP";
+        RFC3964_IPv4 = "yes";
+        NftablesCounters = "no";
+        NftablesTableOwner = "yes";
+        IndividualCalls = "no";
+      };
+
       zones = {
-        "eno1" = {
+        "wan" = {
           interfaces = [
             "ens1"
           ];