diff --git a/modules/services/docker.nix b/modules/services/docker.nix
index c3afb116..7f8ad383 100644
--- a/modules/services/docker.nix
+++ b/modules/services/docker.nix
@@ -25,6 +25,7 @@ inputs:
           };
         };
         hardware.nvidia-container-toolkit.enable = inputs.lib.mkIf inputs.config.nixos.system.nixpkgs.cuda.enable true;
+        networking.firewall.trustedInterfaces = [ "docker0" ];
       }
     )
     # some docker settings should be set unconditionally, as some services depend on them