diff --git a/system/services/openvpn.nix b/system/services/openvpn.nix
index 0ac0bf6..948b52f 100644
--- a/system/services/openvpn.nix
+++ b/system/services/openvpn.nix
@@ -21,6 +21,9 @@ in
   config = mkIf cfg.enable {
     environment.systemPackages = [ pkgs.openvpn ]; # To generate keys with openvpn --genkey --secret <name>.key
 
+    # Enable IP forwarding to allow the VPN to act as a gateway.
+    boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
+
     networking.nat = {
       enable = true;
       inherit externalInterface;