diff --git a/keys/mullvad b/keys/mullvad
deleted file mode 100644
index c264754..0000000
Binary files a/keys/mullvad and /dev/null differ
diff --git a/keys/secrets.nix b/keys/secrets.nix
index 631260a..deabb14 100644
--- a/keys/secrets.nix
+++ b/keys/secrets.nix
@@ -14,6 +14,6 @@ in
   "hetzner.priv".publicKeys = macbook ++ selene ++ master ++ ren;
   "wg-ren.priv".publicKeys = macbook++master++ren;
   "ren.priv".publicKeys = master ++ ren;
-  "mullvad".publicKeys = master ++ ren ++ macbook;
+  "wg-scribe".publicKeys = master ++ ren ++ macbook;
   "smbshare".publicKeys = master ++ macbook ++ ren ++ selene;
 }
\ No newline at end of file
diff --git a/keys/wg-scribe b/keys/wg-scribe
new file mode 100644
index 0000000..e7fb9d0
Binary files /dev/null and b/keys/wg-scribe differ
diff --git a/modules/servermodules/arr/arr.nix b/modules/servermodules/arr/arr.nix
index dcd3f28..00e2f1f 100644
--- a/modules/servermodules/arr/arr.nix
+++ b/modules/servermodules/arr/arr.nix
@@ -15,12 +15,14 @@ in
     ];
   };
 
-  age.secrets.mullvad = {
-    file = ../../../keys/mullvad;
-    path = "/etc/wireguard/mullvad.conf";
+  age.secrets.wg-scribe = {
+    file = ../../../keys/wg-scribe;
+    path = "/etc/wireguard/wg-scribe.conf";
   };
 
-  networking.firewall.trustedInterfaces = [ "wg-selene" ];
+  networking.firewall.trustedInterfaces = [ "wg-selene" "wg-scribe" ];
+  networking.firewall.allowedUDPPorts = [ 10632 ];
+  networking.firewall.checkReversePath = false;
   services.prowlarr.enable = true;
 
   services.deluge = {