diff --git a/systems/palatine-hill/docker/arr.nix b/systems/palatine-hill/docker/arr.nix
index dee074c..2afe63f 100644
--- a/systems/palatine-hill/docker/arr.nix
+++ b/systems/palatine-hill/docker/arr.nix
@@ -12,8 +12,6 @@ let
     in
     {
       "${ctype}__POSTGRES__HOST" = "host.docker.internal";
-      "${ctype}__POSTGRES__USER" = "SOPS_ONLY";
-      "${ctype}__POSTGRES__PASSWORD" = "SOPS_ONLY";
       "${ctype}__POSTGRES__PORT" = toString config.services.postgresql.settings.port;
     };
 in
@@ -57,8 +55,6 @@ in
         PGID = "100";
         TZ = "America/New_York";
         POSTGRES_HOST = "host.docker.internal";
-        POSTGRES_USER = "SOPS_ONLY";
-        POSTGRES_PASSWORD = "SOPS_ONLY";
         POSTGRES_PORT = toString config.services.postgresql.settings.port;
       };
       environmentFiles = [
@@ -88,7 +84,11 @@ in
       environmentFiles = [
         config.sops.secrets."docker/prowlarr".path
       ];
-      extraOptions = [ "--network=arrnet" ];
+      extraOptions = [
+        "--network=arrnet"
+
+        "--add-host=host.docker.internal:host-gateway"
+      ];
       volumes = [ "${vars.primary_docker}/prowlarr:/config" ];
       autoStart = true;
     };
@@ -110,7 +110,10 @@ in
         "${vars.primary_docker}/radarr:/config"
         "${vars.primary_plex_storage}/data:/data"
       ];
-      extraOptions = [ "--network=arrnet" ];
+      extraOptions = [
+        "--network=arrnet"
+        "--add-host=host.docker.internal:host-gateway"
+      ];
       autoStart = true;
     };
     sonarr = {
@@ -131,7 +134,10 @@ in
         "${vars.primary_docker}/sonarr:/config"
         "${vars.primary_plex_storage}/data:/data"
       ];
-      extraOptions = [ "--network=arrnet" ];
+      extraOptions = [
+        "--network=arrnet"
+        "--add-host=host.docker.internal:host-gateway"
+      ];
       autoStart = true;
     };
     lidarr = {
@@ -152,7 +158,11 @@ in
         "${vars.primary_docker}/lidarr:/config"
         "${vars.primary_plex_storage}/data:/data"
       ];
-      extraOptions = [ "--network=arrnet" ];
+      extraOptions = [
+        "--network=arrnet"
+        "--add-host=host.docker.internal:host-gateway"
+
+      ];
       autoStart = true;
     };
     unpackerr = {
@@ -198,8 +208,6 @@ in
         DB_TYPE = "postgres";
         DB_HOST = "host.docker.internal";
         DB_PORT = toString config.services.postgresql.settings.port;
-        DB_USER = "SOPS_ONLY";
-        DB_PASS = "SOPS_ONLY";
       };
       environmentFiles = [
         config.sops.secrets."docker/jellyseerr".path
@@ -209,6 +217,7 @@ in
       extraOptions = [
         "--network=arrnet"
         "--network=haproxy-net"
+        "--add-host=host.docker.internal:host-gateway"
         # "--health-cmd \"wget --no-verbose --tries 1 --spider http://localhost:5055/api/v1/status || exit 1\""
         # "--health-start-period 20s"
         # "--health-timeout 3s"
diff --git a/systems/palatine-hill/firewall.nix b/systems/palatine-hill/firewall.nix
index 33ffd45..366673f 100644
--- a/systems/palatine-hill/firewall.nix
+++ b/systems/palatine-hill/firewall.nix
@@ -33,6 +33,9 @@
     8686
     8787
     5055
+
+    # temp postgres
+    5432
   ];
 
 }