diff --git a/roles/net-security/tasks/main.yml b/roles/net-security/tasks/main.yml
index 8566849..61286b8 100644
--- a/roles/net-security/tasks/main.yml
+++ b/roles/net-security/tasks/main.yml
@@ -32,6 +32,7 @@
     - 2377  # cluster management communications
     - 7946  # communication among nodes
     - 4789  # overlay network traffic
+    - 9001  # Portainer communication
 
 - name: Block everything else by default & enable firewall.
   community.general.ufw:
diff --git a/roles/traefik-deploy/templates/traefik-stack.yml.j2 b/roles/traefik-deploy/templates/traefik-stack.yml.j2
index 328e033..b7bb042 100644
--- a/roles/traefik-deploy/templates/traefik-stack.yml.j2
+++ b/roles/traefik-deploy/templates/traefik-stack.yml.j2
@@ -3,14 +3,14 @@ version: '3'
 
 services:
   app:
-    image: 'traefik:2.5'
+    image: 'traefik:{{ traefik_version }}'
 
     deploy:
       mode: replicated
       replicas: 1
       placement:
         constraints:
-          - node.role == manager
+          - node.hostname == alpha
 
     networks:
       - public