summaryrefslogtreecommitdiff
path: root/src/etc/systemd/system/openvpn@.service.d/10-override.conf
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2021-11-01 16:29:07 +0100
committerGitHub <noreply@github.com>2021-11-01 16:29:07 +0100
commitf52ca36b3746ad7e2ce8d6e57d432b5b2cd9d6cc (patch)
treea0ea609a933a4d2e54d5712e2b1671a19181c372 /src/etc/systemd/system/openvpn@.service.d/10-override.conf
parent85bf315f71b411e3cdcd19793c4f7e1e5efed917 (diff)
parent1b7c879b9fed2f4563477039bc6ddf4dc0db5829 (diff)
downloadvyos-1x-f52ca36b3746ad7e2ce8d6e57d432b5b2cd9d6cc.tar.gz
vyos-1x-f52ca36b3746ad7e2ce8d6e57d432b5b2cd9d6cc.zip
Merge pull request #1021 from zdc/T3350-sagitta
OpenVPN: T3350: Changed custom options for OpenVPN processing
Diffstat (limited to 'src/etc/systemd/system/openvpn@.service.d/10-override.conf')
-rw-r--r--src/etc/systemd/system/openvpn@.service.d/10-override.conf13
1 files changed, 13 insertions, 0 deletions
diff --git a/src/etc/systemd/system/openvpn@.service.d/10-override.conf b/src/etc/systemd/system/openvpn@.service.d/10-override.conf
new file mode 100644
index 000000000..03fe6b587
--- /dev/null
+++ b/src/etc/systemd/system/openvpn@.service.d/10-override.conf
@@ -0,0 +1,13 @@
+[Unit]
+After=
+After=vyos-router.service
+
+[Service]
+WorkingDirectory=
+WorkingDirectory=/run/openvpn
+ExecStart=
+ExecStart=/usr/sbin/openvpn --daemon openvpn-%i --config %i.conf --status %i.status 30 --writepid %i.pid
+User=openvpn
+Group=openvpn
+AmbientCapabilities=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE CAP_AUDIT_WRITE
+CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE CAP_AUDIT_WRITE
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-27 00:07:10 +0000