diff --git a/networkpolicy.yaml b/networkpolicy.yaml
index 3914a6b..6061237 100644
--- a/networkpolicy.yaml
+++ b/networkpolicy.yaml
@@ -16,6 +16,12 @@ spec:
         - namespaceSelector:
             matchLabels:
               kubernetes.io/metadata.name: irc
+              
+    # explicitly allowed home LAN
+    - from:
+        - ipBlock:
+            cidr: 192.168.195.0/24
+
 
   egress:
     # namespace-local
@@ -24,11 +30,6 @@ spec:
             matchLabels:
               kubernetes.io/metadata.name: irc
 
-    # explicitly allowed home LAN
-    - to:
-        - ipBlock:
-            cidr: 192.168.195.0/24
-
     # public internet only
     - to:
         - ipBlock: