diff --git a/hosts/ward/microvms/influxdb.nix b/hosts/ward/microvms/influxdb.nix
index 0959f28..54ddfcf 100644
--- a/hosts/ward/microvms/influxdb.nix
+++ b/hosts/ward/microvms/influxdb.nix
@@ -23,7 +23,13 @@ in {
           keepalive 2;
         '';
       };
-      virtualHosts.${influxdbDomain} = {
+      virtualHosts.${influxdbDomain} = let
+        accessRules = ''
+          satisfy any;
+          ${lib.concatMapStrings (ip: "allow ${ip};\n") sentinelCfg.meta.wireguard.proxy-sentinel.server.reservedAddresses}
+          deny all;
+        '';
+      in {
         forceSSL = true;
         useACMEWildcardHost = true;
         oauth2.enable = true;
@@ -31,10 +37,14 @@ in {
         locations."/" = {
           proxyPass = "http://influxdb";
           proxyWebsockets = true;
+          extraConfig = accessRules;
+        };
+        locations."/api/v2/write" = {
+          proxyPass = "http://influxdb/api/v2/write";
+          proxyWebsockets = true;
           extraConfig = ''
-            satisfy any;
-            ${lib.concatMapStrings (ip: "allow ${ip};\n") sentinelCfg.meta.wireguard.proxy-sentinel.server.reservedAddresses}
-            deny all;
+            ${accessRules}
+            access_log off;
           '';
         };
       };
diff --git a/modules/meta/telegraf.nix b/modules/meta/telegraf.nix
index eaa7637..959be9e 100644
--- a/modules/meta/telegraf.nix
+++ b/modules/meta/telegraf.nix
@@ -152,6 +152,7 @@ in {
         allow ::1;
         deny all;
         stub_status;
+        access_log off;
       '';
     };