jengelh/nftables
SHA256
1
0
Fork 1
forked from pool/nftables
Code Pull Requests Activity
Files
c434951062ef36d48fe1e4135f8b6f957551f975429cf3365a7e7f8b0d976073
nftables/nftables.service

23 lines
582 B
SYSTEMD
Raw Normal View History

Implement nftables.service for static firewall configurations (bsc#1237277) It seems users are missing this service which is not part of the upstream project but present in most other Linux distributions. It allows to setup simple static nftables based firewalls via configuration files.
2025-02-27 12:01:17 +01:00
[Unit]
Description=nftables static rule set
Documentation=file:/usr/share/doc/packages/nftables/README.SUSE
Wants=network-pre.target
Before=network-pre.target shutdown.target
Conflicts=shutdown.target
nftables service improvements - place example config file into /usr/share/doc/packages/nftables - remove duplicate AssertPathExists file from service - add conflicts towards firewalld service to avoid having both active at the same time
2025-03-03 14:42:04 +01:00
Conflicts=firewalld.service
Implement nftables.service for static firewall configurations (bsc#1237277) It seems users are missing this service which is not part of the upstream project but present in most other Linux distributions. It allows to setup simple static nftables based firewalls via configuration files.
2025-02-27 12:01:17 +01:00
DefaultDependencies=no
AssertPathExists=/etc/nftables/rules/main.nft
[Service]
Type=oneshot
RemainAfterExit=yes
StandardInput=null
ProtectSystem=full
ProtectHome=true
ExecStart=/usr/sbin/nft -f /etc/nftables/rules/main.nft
ExecReload=/usr/sbin/nft -f /etc/nftables/rules/main.nft
ExecStop=/usr/sbin/nft flush ruleset
[Install]
WantedBy=sysinit.target
Copy Permalink