diff --git a/firewall.nft b/firewall.nft
index db19488..faa7b89 100755
--- a/firewall.nft
+++ b/firewall.nft
@@ -69,6 +69,7 @@ table inet firewall {
 	chain input {
 		type filter hook input priority 0;
 		policy accept;
+		tcp dport {http, https } drop
 	}
 
 	chain output {