diff --git a/hosts/nuc/default.nix b/hosts/nuc/default.nix
index 7415d60..624fd75 100644
--- a/hosts/nuc/default.nix
+++ b/hosts/nuc/default.nix
@@ -5,6 +5,7 @@
       # Include the results of the hardware scan.
       ./hardware-configuration.nix
       ./modules/networks
+      ./modules/adguard
       ./modules/backup
       ./modules/cache
       ./modules/matrix
diff --git a/hosts/nuc/modules/adguard/default.nix b/hosts/nuc/modules/adguard/default.nix
new file mode 100644
index 0000000..c1c3af7
--- /dev/null
+++ b/hosts/nuc/modules/adguard/default.nix
@@ -0,0 +1,10 @@
+{ ... }:
+{
+  networking.firewall.allowedTCPPorts = [ 53 ];
+  networking.firewall.allowedUDPPorts = [ 53 ];
+  services.adguardhome = {
+    enable = true;
+    openFirewall = true;
+    settings.bind_port = 3000;
+  };
+}
diff --git a/hosts/nuc/modules/networks/default.nix b/hosts/nuc/modules/networks/default.nix
index d985cf5..7a1b8ba 100644
--- a/hosts/nuc/modules/networks/default.nix
+++ b/hosts/nuc/modules/networks/default.nix
@@ -21,12 +21,10 @@
       "2620:fe::fe"
       "2620:fe::9"
     ];
-    # make room for the adguard dns
-    # extraConfig = ''
-    #   [Resolve]
-    #   DNS=127.0.0.1
-    #   DNSStubListener=no
-    # '';
+    extraConfig = ''
+      [Resolve]
+      DNSStubListener=no
+    '';
   };
   systemd.network = {
     enable = true;