diff --git a/group_vars/turn/vars b/group_vars/turn/vars
new file mode 100644
index 0000000..684a089
--- /dev/null
+++ b/group_vars/turn/vars
@@ -0,0 +1,6 @@
+---
+
+nft_extra: |
+  tcp dport {3478, 5349} counter accept comment "coturn listening port"
+  udp dport {3478, 5349} counter accept comment "coturn listening port"
+  udp dport 32769-65535 counter accept comment "relay ports range"
diff --git a/turn.yml b/turn.yml
index 532187b..e9a2e42 100644
--- a/turn.yml
+++ b/turn.yml
@@ -14,11 +14,6 @@
   tasks:
     - name: Basic setup
       include_role: name=common
-      vars:
-        nft_extra: |
-          tcp dport {3478, 5349} counter accept comment "coturn listening port"
-          udp dport {3478, 5349} counter accept comment "coturn listening port"
-          udp dport 32769-65535 counter accept comment "relay ports range"
 
     - name: Install coturn and certbot
       apt: