diff --git a/container/proxitok/default.nix b/container/proxitok/default.nix
index 81ab81f..1a68e5a 100644
--- a/container/proxitok/default.nix
+++ b/container/proxitok/default.nix
@@ -39,6 +39,8 @@
 
   services.nginx = {
     virtualHosts."tictac.daniel.sx" = {
+      http3 = true;
+
       forceSSL = true;
       useACMEHost = "daniel.sx";
       basicAuthFile = config.age.secrets.proxitok-auth.path;
diff --git a/system/nixos/anonymous-overflow.nix b/system/nixos/anonymous-overflow.nix
index 5885888..d6ccdf2 100644
--- a/system/nixos/anonymous-overflow.nix
+++ b/system/nixos/anonymous-overflow.nix
@@ -40,6 +40,8 @@ in
 
   services.nginx = {
     virtualHosts."overflow.daniel.sx" = {
+      http3 = true;
+
       root = "${anonymous-overflow-pkg}/share/anonymous-overflow/public/";
       forceSSL = true;
       useACMEHost = "daniel.sx";
diff --git a/system/nixos/libreddit.nix b/system/nixos/libreddit.nix
index 7fd0347..f6d8cd4 100644
--- a/system/nixos/libreddit.nix
+++ b/system/nixos/libreddit.nix
@@ -10,6 +10,8 @@
 
   services.nginx = {
     virtualHosts."${secret.nginx.hostnames.libreddit}" = {
+      http3 = true;
+
       forceSSL = true;
       useACMEHost = "daniel.sx";
       basicAuthFile = config.age.secrets.libreddit-auth.path;
diff --git a/system/nixos/nginx.nix b/system/nixos/nginx.nix
index 77325d7..b9ebeec 100644
--- a/system/nixos/nginx.nix
+++ b/system/nixos/nginx.nix
@@ -1,6 +1,10 @@
+{ pkgs, ... }:
+
 {
   services.nginx = {
     enable = true;
+    package = pkgs.nginxQuic;
+
     recommendedOptimisation = true;
     recommendedGzipSettings = true;
     recommendedBrotliSettings = true;
diff --git a/system/nixos/nitter.nix b/system/nixos/nitter.nix
index 5fa90e0..79f2e45 100644
--- a/system/nixos/nitter.nix
+++ b/system/nixos/nitter.nix
@@ -53,6 +53,8 @@ in
 
   services.nginx = {
     virtualHosts."${secret.nginx.hostnames.nitter}" = {
+      http3 = true;
+
       root = "${nitter-pkg}/share/nitter/public/";
       forceSSL = true;
       useACMEHost = "daniel.sx";
diff --git a/system/nixos/rimgo.nix b/system/nixos/rimgo.nix
index cd6a6a1..cd19660 100644
--- a/system/nixos/rimgo.nix
+++ b/system/nixos/rimgo.nix
@@ -42,6 +42,8 @@ in
 
   services.nginx = {
     virtualHosts."ringo.daniel.sx" = {
+      http3 = true;
+
       forceSSL = true;
       useACMEHost = "daniel.sx";
       basicAuthFile = config.age.secrets.rimgo-auth.path;