| Andrew Geissler | f1e4406 | 2021-04-15 15:52:46 -0500 | [diff] [blame] | 1 | [Unit] |
| 2 | Description=Suricata IDS/IDP daemon |
| 3 | After=network.target |
| 4 | Requires=network.target |
| 5 | Documentation=man:suricata(8) man:suricatasc(8) |
| 6 | Documentation=https://redmine.openinfosecfoundation.org/projects/suricata/wiki |
| 7 | |
| 8 | [Service] |
| 9 | Type=simple |
| 10 | CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW |
| 11 | RestrictAddressFamilies= |
| 12 | ExecStart=/usr/bin/suricata -c /etc/suricata/suricata.yaml eth0 |
| 13 | ExecReload=/bin/kill -HUP $MAINPID |
| 14 | PrivateTmp=yes |
| 15 | ProtectHome=yes |
| 16 | ProtectSystem=yes |
| 17 | |
| 18 | [Install] |
| 19 | WantedBy=multi-user.target |
| 20 | |