diff --git a/roles/base/templates/iptables/iptables b/roles/base/templates/iptables/iptables
index ff907e0b61..2f4271c2c6 100644
--- a/roles/base/templates/iptables/iptables
+++ b/roles/base/templates/iptables/iptables
@@ -104,9 +104,9 @@
 {% for port in proxy_tcp_ports %}
 {% for proxy in (groups['proxies'] + groups['proxies-internal']) %}
 {% if hostvars[proxy]['datacenter'] == "phx2" %}
--A INPUT -p tcp -m tcp --dport {{ port }} --src {{ hostvars[proxy]['ansible_tun0']['ipv4']['address'] }} -j ACCEPT
-{% else %}
 -A INPUT -p tcp -m tcp --dport {{ port }} --src {{ hostvars[proxy]['ansible_eth0']['ipv4']['address'] }} -j ACCEPT
+{% else %}
+-A INPUT -p tcp -m tcp --dport {{ port }} --src {{ hostvars[proxy]['ansible_tun0']['ipv4']['address'] }} -j ACCEPT
 {% endif %}
 {% endfor %}
 {% endfor %}