[thirdparty/systemd.git] / units / systemd-networkd.service.m4.in

#  This file is part of systemd.
#
#  systemd is free software; you can redistribute it and/or modify it
#  under the terms of the GNU Lesser General Public License as published by
#  the Free Software Foundation; either version 2.1 of the License, or
#  (at your option) any later version.

[Unit]
Description=Network Service
Documentation=man:systemd-networkd.service(8)
ConditionCapability=CAP_NET_ADMIN
DefaultDependencies=no
# systemd-udevd.service can be dropped once tuntap is moved to netlink
After=systemd-udevd.service network-pre.target systemd-sysusers.service systemd-sysctl.service
Before=network.target multi-user.target shutdown.target
Conflicts=shutdown.target
Wants=network.target

[Service]
Type=notify
Restart=on-failure
RestartSec=0
ExecStart=@rootlibexecdir@/systemd-networkd
WatchdogSec=3min
CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SETUID CAP_SETGID CAP_SETPCAP CAP_CHOWN CAP_DAC_OVERRIDE CAP_FOWNER
ProtectSystem=strict
ProtectHome=yes
ProtectControlGroups=yes
ProtectKernelModules=yes
MemoryDenyWriteExecute=yes
RestrictRealtime=yes
RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6 AF_PACKET
SystemCallFilter=~@clock @cpu-emulation @debug @keyring @module @mount @obsolete @raw-io @reboot @swap
SystemCallArchitectures=native
ReadWritePaths=/run/systemd

[Install]
WantedBy=multi-user.target
Also=systemd-networkd.socket
Alias=dbus-org.freedesktop.network1.service

# We want to enable systemd-networkd-wait-online.service whenever this service
# is enabled. systemd-networkd-wait-online.service has
# WantedBy=network-online.target, so enabling it only has an effect if
# network-online.target itself is enabled or pulled in by some other unit.
Also=systemd-networkd-wait-online.service
Commit	Line	Data
f579559b TG	1	# This file is part of systemd.
	2	#
	3	# systemd is free software; you can redistribute it and/or modify it
	4	# under the terms of the GNU Lesser General Public License as published by
	5	# the Free Software Foundation; either version 2.1 of the License, or
	6	# (at your option) any later version.
	7
	8	[Unit]
	9	Description=Network Service
	10	Documentation=man:systemd-networkd.service(8)
689d781b	11	ConditionCapability=CAP_NET_ADMIN
f579559b	12	DefaultDependencies=no
5f004d1e MP	13	# systemd-udevd.service can be dropped once tuntap is moved to netlink
5f004d1e MP	14	After=systemd-udevd.service network-pre.target systemd-sysusers.service systemd-sysctl.service
689d781b LP	15	Before=network.target multi-user.target shutdown.target
689d781b LP	16	Conflicts=shutdown.target
f579559b TG	17	Wants=network.target
	18
	19	[Service]
4b6141c4	20	Type=notify
a97dcc12	21	Restart=on-failure
f579559b TG	22	RestartSec=0
f579559b TG	23	ExecStart=@rootlibexecdir@/systemd-networkd
0c28d51a	24	WatchdogSec=3min
bddfc8af	25	CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_BROADCAST CAP_NET_RAW CAP_SETUID CAP_SETGID CAP_SETPCAP CAP_CHOWN CAP_DAC_OVERRIDE CAP_FOWNER
c7fb922d	26	ProtectSystem=strict
1b8689f9	27	ProtectHome=yes
0c28d51a	28	ProtectControlGroups=yes
b6c7278c	29	ProtectKernelModules=yes
40652ca4	30	MemoryDenyWriteExecute=yes
0c28d51a LP	31	RestrictRealtime=yes
0c28d51a LP	32	RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6 AF_PACKET
6489ccfe	33	SystemCallFilter=~@clock @cpu-emulation @debug @keyring @module @mount @obsolete @raw-io @reboot @swap
7f396e5f	34	SystemCallArchitectures=native
c7fb922d	35	ReadWritePaths=/run/systemd
c4a0b20c JD	36
	37	[Install]
	38	WantedBy=multi-user.target
5544ee85	39	Also=systemd-networkd.socket
fb369a5b	40	Alias=dbus-org.freedesktop.network1.service
9e496560 ZJS	41
	42	# We want to enable systemd-networkd-wait-online.service whenever this service
	43	# is enabled. systemd-networkd-wait-online.service has
	44	# WantedBy=network-online.target, so enabling it only has an effect if
	45	# network-online.target itself is enabled or pulled in by some other unit.
	46	Also=systemd-networkd-wait-online.service