diff --git a/roles/pi-hole/files/dns_foward.conf b/roles/pi-hole/files/dns_foward.conf
new file mode 100644
index 0000000..a324be6
--- /dev/null
+++ b/roles/pi-hole/files/dns_foward.conf
@@ -0,0 +1,7 @@
+stream {
+     server {
+         listen 53 udp;
+         proxy_pass 127.0.0.1:5053;
+         proxy_responses 0;
+     }
+ }
diff --git a/roles/pi-hole/tasks/main.yml b/roles/pi-hole/tasks/main.yml
index b7f5e54..e5d9d38 100644
--- a/roles/pi-hole/tasks/main.yml
+++ b/roles/pi-hole/tasks/main.yml
@@ -74,6 +74,24 @@
 - name: Debug
   ansible.builtin.debug:
     msg: "Don't forget to manually add a DNS record for pi-hole.kleinendorst.info pointing to: {{ ansible_facts['default_ipv4']['address'] }}."
+- name: Setup udp port forwarding (53 > 5053) in nginx
+  become: true
+  ansible.builtin.blockinfile:
+    path: /etc/nginx/nginx.conf
+    insertbefore: '^http \{$'
+    block: |
+      stream {
+        server {
+          listen 53;
+          proxy_pass 127.0.0.1:5053;
+        }
+
+        server {
+            listen 53 udp;
+            proxy_pass 127.0.0.1:5053;
+        }
+      }
+  notify: Restart Nginx
 # - name: Add forwarding rules for ufw
 #   become: true
 #   ansible.builtin.blockinfile: