diff --git a/hosts/x86_64-linux/beleth/default.nix b/hosts/x86_64-linux/beleth/default.nix
index c6711c0..c66d9b7 100644
--- a/hosts/x86_64-linux/beleth/default.nix
+++ b/hosts/x86_64-linux/beleth/default.nix
@@ -135,6 +135,7 @@ with lib; {
   services.mullvad-vpn.enable = true;
 
   # Open ports in the firewall.
+  networking.firewall.package = pkgs.nftables;
   networking.firewall.allowedTCPPorts = [22 80 443];
   networking.firewall.allowedUDPPorts = [51820];
 
diff --git a/hosts/x86_64-linux/beleth/nfs.nix b/hosts/x86_64-linux/beleth/nfs.nix
new file mode 100644
index 0000000..f3ec91b
--- /dev/null
+++ b/hosts/x86_64-linux/beleth/nfs.nix
@@ -0,0 +1,46 @@
+{
+  config,
+  lib,
+  inputs,
+  ...
+}: {
+#            "2a0f:be01:0:100::/64"
+#            "2a0f:be01:0:200::/64"
+#            "2a0f:be01:fe:f00::/56"
+  services.nfs = {
+    server = {
+      enable = true;
+      exports = ''
+	/export 	2a0f:be01:0:100::/64(ro,async,fsid=0,no_subtree_check) 2a0f:be01:0:200::/64(ro,async,fsid=0,no_subtree_check) 2a0f:be01:fe:f00::/56(ro,async,fsid=0,no_subtree_check)
+	/export/shows 	2a0f:be01:0:100::/64(ro,async,no_subtree_check) 2a0f:be01:0:200::/64(ro,async,no_subtree_check) 2a0f:be01:fe:f00::/56(ro,async,no_subtree_check)
+	/export/movies 	2a0f:be01:0:100::/64(ro,async,no_subtree_check) 2a0f:be01:0:200::/64(ro,async,no_subtree_check) 2a0f:be01:fe:f00::/56(ro,async,no_subtree_check)
+	/export/music	2a0f:be01:0:100::/64(ro,async,no_subtree_check) 2a0f:be01:0:200::/64(ro,async,no_subtree_check) 2a0f:be01:fe:f00::/56(ro,async,no_subtree_check)
+      '';
+    };
+  };
+
+  networking.firewall.allowedTCPPorts = [ 2049 ];
+  networking.firewall.extraInputRules = ''
+    iifname wg0 ip6 saddr { 
+      2a0f:be01:0:100::/64,
+      2a0f:be01:0:200::/64,
+      2a0f:be01:fe:f00::/56,
+    } tcp dport 2049 accept
+  '';
+
+
+  fileSystems = {
+    "/export/shows" = {
+      device = "/home/xqtc/jellyfin/shows";
+      options = [ "bind" ];
+    };
+    "/export/movies" = {
+      device = "/home/xqtc/jellyfin/movies";
+      options = [ "bind" ];
+    };
+    "/export/music" = {
+      device = "/home/xqtc/jellyfin/music";
+      options = [ "bind" ];
+    };
+  };
+}
diff --git a/hosts/x86_64-linux/beleth/systemd-mount.nix b/hosts/x86_64-linux/beleth/systemd-mount.nix
deleted file mode 100644
index 4824735..0000000
--- a/hosts/x86_64-linux/beleth/systemd-mount.nix
+++ /dev/null
@@ -1,9 +0,0 @@
-{
-  config,
-  lib,
-  inputs,
-  ...
-}: {
-  systemd.mounts."frotting" = {
-  };
-}