diff --git a/hosts/cyper-proxy/configuration.nix b/hosts/cyper-proxy/configuration.nix
index 2439248..661a3ca 100644
--- a/hosts/cyper-proxy/configuration.nix
+++ b/hosts/cyper-proxy/configuration.nix
@@ -4,7 +4,7 @@
     ./hardware-configuration.nix
     ../../nixos/roles/nginx.nix
     ../../nixos/roles/matrix/livekit.nix
-    ../../nixos/roles/jitsi.nix
+    #    ../../nixos/roles/jitsi.nix
   ];
 
   networking = {
diff --git a/nixos/roles/matrix/livekit.nix b/nixos/roles/matrix/livekit.nix
index cf52061..c973c63 100644
--- a/nixos/roles/matrix/livekit.nix
+++ b/nixos/roles/matrix/livekit.nix
@@ -1,4 +1,4 @@
-{ config, ... }:
+{ config, lib, ... }:
 {
   sops.secrets.livekit_key_sfu = { };
 
@@ -27,4 +27,15 @@
       };
     };
   };
+  networking.firewall.allowedTCPPorts = [ 7881 ];
+
+  systemd.services.livekit.serviceConfig = {
+    PrivateUsers = lib.mkForce false;
+    RestrictAddressFamilies = lib.mkForce [
+      "AF_INET"
+      "AF_INET6"
+      "AF_NETLINK"
+      "AF_UNIX"
+    ];
+  };
 }