Merge tag 'upstream/2.4.3'

Upstream version 2.4.3
author: Alberto Gonzalez Iniesta <agi@inittab.org> 2017-06-22 13:16:46 +0200
committer: Alberto Gonzalez Iniesta <agi@inittab.org> 2017-06-22 13:16:46 +0200
commit: 766cdd4b4d1fcb31addf6727dbcfd3d99e390456 (patch)
tree: 76932876ae57f139fa1b3f82b375e4e526b507d7 /distro/systemd/openvpn-client@.service.in
parent: d73f7253d939e293abf9e27b4b7f37df1ec12a39 (diff)
parent: 9683f890944ffb114f5f8214f694e0b339cf5a5a (diff)
1 files changed, 22 insertions, 0 deletions
diff --git a/distro/systemd/openvpn-client@.service.in b/distro/systemd/openvpn-client@.service.in
new file mode 100644
index 0000000..49e3f51
--- /dev/null
+++ b/distro/systemd/openvpn-client@.service.in
@@ -0,0 +1,22 @@
+[Unit]
+Description=OpenVPN tunnel for %I
+After=syslog.target network-online.target
+Wants=network-online.target
+Documentation=man:openvpn(8)
+Documentation=https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage
+Documentation=https://community.openvpn.net/openvpn/wiki/HOWTO
+
+[Service]
+Type=notify
+PrivateTmp=true
+WorkingDirectory=/etc/openvpn/client
+ExecStart=@sbindir@/openvpn --suppress-timestamps --nobind --config %i.conf
+CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE
+LimitNPROC=10
+DeviceAllow=/dev/null rw
+DeviceAllow=/dev/net/tun rw
+ProtectSystem=true
+ProtectHome=true
+
+[Install]
+WantedBy=multi-user.target
author	Alberto Gonzalez Iniesta <agi@inittab.org>	2017-06-22 13:16:46 +0200
committer	Alberto Gonzalez Iniesta <agi@inittab.org>	2017-06-22 13:16:46 +0200
commit	766cdd4b4d1fcb31addf6727dbcfd3d99e390456 (patch)
tree	76932876ae57f139fa1b3f82b375e4e526b507d7 /distro/systemd/openvpn-client@.service.in
parent	d73f7253d939e293abf9e27b4b7f37df1ec12a39 (diff)
parent	9683f890944ffb114f5f8214f694e0b339cf5a5a (diff)