diff --git a/modules/nginx.nix b/modules/nginx.nix
index c4de3ca..478c08d 100644
--- a/modules/nginx.nix
+++ b/modules/nginx.nix
@@ -16,7 +16,11 @@
     CF_ZONE_API_TOKEN="${config.sops.placeholder."CF_ZONE_API_TOKEN"}"
   '';
 
-  networking.firewall.allowedTCPPorts = [ 80 443 ];
+  networking.firewall.allowedTCPPorts = [
+    80 # http
+    443 # https
+    222 # git ssh
+  ];
 
   security.acme = {
     acceptTerms = true;
@@ -51,5 +55,11 @@
         };
       };
     };
+    streamConfig = ''
+      server {
+        listen 222;
+        proxy_pass 10.5.0.2:222;
+      }
+    '';
   };
 }
\ No newline at end of file