diff --git a/global/overlay/etc/puppet/modules/net/manifests/open_1022.pp b/global/overlay/etc/puppet/modules/net/manifests/open_1022.pp
index 5cfd974..2450056 100644
--- a/global/overlay/etc/puppet/modules/net/manifests/open_1022.pp
+++ b/global/overlay/etc/puppet/modules/net/manifests/open_1022.pp
@@ -1,7 +1,10 @@
 class net::open_1022 {
-  sunet::misc::ufw_allow { 'allow_ssh_1022':
-   from => ['130.242.125.68'],
+
+  $mgmt_addresses = hiera_array('mgmt_addresses',[])
+
+  sunet::nftables::allow { 'allow_ssh_1022':
+   from => $mgmt_addresses,
    port => '1022',
-   proto =>  'udp'
+   proto =>  'tcp'
   }
 }