diff options
Diffstat (limited to 'distro/systemd/openvpn-client@.service.in')
-rw-r--r-- | distro/systemd/openvpn-client@.service.in | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/distro/systemd/openvpn-client@.service.in b/distro/systemd/openvpn-client@.service.in new file mode 100644 index 0000000..49e3f51 --- /dev/null +++ b/distro/systemd/openvpn-client@.service.in @@ -0,0 +1,22 @@ +[Unit] +Description=OpenVPN tunnel for %I +After=syslog.target network-online.target +Wants=network-online.target +Documentation=man:openvpn(8) +Documentation=https://community.openvpn.net/openvpn/wiki/Openvpn24ManPage +Documentation=https://community.openvpn.net/openvpn/wiki/HOWTO + +[Service] +Type=notify +PrivateTmp=true +WorkingDirectory=/etc/openvpn/client +ExecStart=@sbindir@/openvpn --suppress-timestamps --nobind --config %i.conf +CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_OVERRIDE +LimitNPROC=10 +DeviceAllow=/dev/null rw +DeviceAllow=/dev/net/tun rw +ProtectSystem=true +ProtectHome=true + +[Install] +WantedBy=multi-user.target |