diff --git a/flake.nix b/flake.nix
index 9518118..efd4289 100644
--- a/flake.nix
+++ b/flake.nix
@@ -1,7 +1,7 @@
 {
   inputs = {
     nixpkgs.url = "github:NixOS/nixpkgs/nixos-21.05";
-    nixpkgs-peertube.url = "github:Izorkin/nixpkgs/add-peertube-service";
+    nixpkgs-peertube.url = "github:GoogleBot42/nixpkgs/add-peertube-service";
     simple-nixos-mailserver.url = "gitlab:simple-nixos-mailserver/nixos-mailserver/nixos-21.05";
     agenix.url = "github:ryantm/agenix";
   };
diff --git a/machines/liza/configuration.nix b/machines/liza/configuration.nix
index cafa424..0320aba 100644
--- a/machines/liza/configuration.nix
+++ b/machines/liza/configuration.nix
@@ -33,8 +33,8 @@
     enable = true;
     localDomain = "tube.neet.space";
     listenHttp = 9000;
-    listenWeb = 9000;
-    enableWebHttps = false;
+    listenWeb = 443;
+    enableWebHttps = true;
     # dataDirs
     serviceEnvironmentFile = "/run/secrets/peertube-init";
     # settings
@@ -56,12 +56,14 @@
     forceSSL = true;
     locations."/" = {
       proxyPass = "http://localhost:${toString config.services.peertube.listenHttp}";
+      proxyWebsockets = true;
     };
   };
   age.secrets.peertube-init.file = ../../secrets/peertube-init.age;
   age.secrets.peertube-db-pw.file = ../../secrets/peertube-db-pw.age;
   age.secrets.peertube-redis-pw.file = ../../secrets/peertube-redis-pw.age;
   age.secrets.peertube-smtp.file = ../../secrets/peertube-smtp.age;
+  networking.firewall.allowedTCPPorts = [ 1935 ];
 
   services.searx = {
     enable = true;