From de0fb97e71f0bc63f59ad8a6cfa19dc4914f2514 Mon Sep 17 00:00:00 2001 From: Arne Schwabe Date: Thu, 16 Oct 2014 12:40:17 +0200 Subject: Update OpenVPN --HG-- extra : rebase_source : eae76bb97139022b5592b2599b7e3870054bcaa9 --- main/openvpn/distro/systemd/openvpn@.service | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 main/openvpn/distro/systemd/openvpn@.service (limited to 'main/openvpn/distro') diff --git a/main/openvpn/distro/systemd/openvpn@.service b/main/openvpn/distro/systemd/openvpn@.service new file mode 100644 index 00000000..7cd36c36 --- /dev/null +++ b/main/openvpn/distro/systemd/openvpn@.service @@ -0,0 +1,19 @@ +[Unit] +Description=OpenVPN tunnel for %I +After=syslog.target network.target +Documentation=man:openvpn(8) +Documentation=https://community.openvpn.net/openvpn/wiki/Openvpn23ManPage +Documentation=https://community.openvpn.net/openvpn/wiki/HOWTO + +[Service] +PrivateTmp=true +Type=forking +PIDFile=/var/run/openvpn/%i.pid +ExecStart=/usr/sbin/openvpn --daemon --writepid /var/run/openvpn/%i.pid --cd /etc/openvpn/ --config %i.conf +CapabilityBoundingSet=CAP_IPC_LOCK CAP_NET_ADMIN CAP_NET_BIND_SERVICE CAP_NET_RAW CAP_SETGID CAP_SETUID CAP_SYS_CHROOT CAP_DAC_READ_SEARCH +LimitNPROC=10 +DeviceAllow=/dev/null rw +DeviceAllow=/dev/net/tun rw + +[Install] +WantedBy=multi-user.target -- cgit v1.2.3