diff options
Diffstat (limited to 'recipes-security/suricata/files/suricata.service')
-rw-r--r-- | recipes-security/suricata/files/suricata.service | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/recipes-security/suricata/files/suricata.service b/recipes-security/suricata/files/suricata.service new file mode 100644 index 0000000..a99a76e --- /dev/null +++ b/recipes-security/suricata/files/suricata.service | |||
@@ -0,0 +1,20 @@ | |||
1 | [Unit] | ||
2 | Description=Suricata IDS/IDP daemon | ||
3 | After=network.target | ||
4 | Requires=network.target | ||
5 | Documentation=man:suricata(8) man:suricatasc(8) | ||
6 | Documentation=https://redmine.openinfosecfoundation.org/projects/suricata/wiki | ||
7 | |||
8 | [Service] | ||
9 | Type=simple | ||
10 | CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW | ||
11 | RestrictAddressFamilies= | ||
12 | ExecStart=/usr/bin/suricata -c /etc/suricata/suricata.yaml eth0 | ||
13 | ExecReload=/bin/kill -HUP $MAINPID | ||
14 | PrivateTmp=yes | ||
15 | ProtectHome=yes | ||
16 | ProtectSystem=yes | ||
17 | |||
18 | [Install] | ||
19 | WantedBy=multi-user.target | ||
20 | |||