diff --git a/roles/firewall/templates/firewall.j2 b/roles/firewall/templates/firewall.j2
index d86a0e8..616dcd0 100644
--- a/roles/firewall/templates/firewall.j2
+++ b/roles/firewall/templates/firewall.j2
@@ -515,12 +515,12 @@ config rule
 # Allow Home Assitant to OpenEVSE
 config rule
 	option name 'Allow-FORWARD-Home-Assistant-OpenEVSE'
-	option src 'dmz'
-	option src_ip '{{ lookup('dig', 'ha.mateu.be') }}'
+	option src 'iot'
+	option src_ip '{{ lookup('dig', 'evse.mateu.be') }}'
 	list proto 'tcp'
-	option dest 'iot'
-	option dest_ip '{{ lookup('dig', 'evse.mateu.be') }}'
-	option dest_port '80'
+	option dest 'dmz'
+	option dest_ip '{{ lookup('dig', 'ha.mateu.be') }}'
+	option dest_port '1883'
 	option target 'ACCEPT'
 	option family 'ipv4'