diff --git a/flake.nix b/flake.nix
index d848e32..6856221 100644
--- a/flake.nix
+++ b/flake.nix
@@ -1,6 +1,6 @@
 # flake for blakes nixos config
 # define new devices in outputs
-# generation: 140 current  2025-10-08 23:21:40  25.05.20251006.20c4598  6.12.50                          *
+# generation: 141 current  2025-10-08 23:40:02  25.05.20251006.20c4598  6.12.50                          *
 {
   description = "blakes nix config";
   inputs = {
diff --git a/modules/homelab/services/qbittorrent/default.nix b/modules/homelab/services/qbittorrent/default.nix
index 3e1d4fd..373e945 100644
--- a/modules/homelab/services/qbittorrent/default.nix
+++ b/modules/homelab/services/qbittorrent/default.nix
@@ -59,16 +59,18 @@ in
       };
     };
 
-#    networking.firewall.extraCommands = ''
-#      iptables -F QBIT
-#      iptables -X QBIT
-#      iptables -N QBIT
-#      iptables -A OUTPUT -m owner --uid-owner ${toString ids} -j QBIT
-#      iptables -A QBIT -o ${vpn_inf} -j ACCEPT
-#      iptables -A QBIT -p tcp -d 127.0.0.1 --dport ${toString cfg.port} -j ACCEPT
-#      iptables -A QBIT -p tcp -o enp89s0 -d 10.0.0.0/8 --dport ${toString cfg.port} -j ACCEPT
-#      iptables -A QBIT -j DROP
-#    '';
+    networking.firewall.extraCommands = ''
+      iptables -F QBIT
+      iptables -X QBIT
+      iptables -N QBIT
+      iptables -A OUTPUT -m owner --uid-owner ${toString ids} -j QBIT
+      iptables -A QBIT -o ${vpn_inf} -j ACCEPT
+      iptables -A QBIT -p udp --dport 53 -o ${vpn_inf} -j ACCEPT
+      iptables -A QBIT -p tcp --dport 53 -o ${vpn_inf} -j ACCEPT
+      iptables -A QBIT -p tcp -d 127.0.0.1 --dport ${toString cfg.port} -j ACCEPT
+      iptables -A QBIT -p tcp -o enp89s0 -d 10.0.0.0/8 --dport ${toString cfg.port} -j ACCEPT
+      iptables -A QBIT -j DROP
+    '';