diff --git a/omnibus/cookbooks/firezone/templates/nginx.conf.erb b/omnibus/cookbooks/firezone/templates/nginx.conf.erb
index b761d165b..fb0be6a60 100644
--- a/omnibus/cookbooks/firezone/templates/nginx.conf.erb
+++ b/omnibus/cookbooks/firezone/templates/nginx.conf.erb
@@ -89,7 +89,7 @@ http {
   add_header X-XSS-Protection        "1; mode=block" always;
   add_header X-Content-Type-Options  "nosniff" always;
   add_header Referrer-Policy         "no-referrer-when-downgrade" always;
-  add_header Content-Security-Policy "default-src 'self' http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
+  add_header Content-Security-Policy "default-src 'self' ws: wss: http: https: data: blob: 'unsafe-inline'; frame-ancestors 'self';" always;
   add_header Permissions-Policy      "interest-cohort=()" always;
   add_header Cache-Control           "public, max-age=2700";