1 files changed, 20 insertions, 0 deletions
diff --git a/recipes-security/suricata/files/suricata.service b/recipes-security/suricata/files/suricata.service
new file mode 100644
index 0000000..a99a76e
--- /dev/null
+++ b/recipes-security/suricata/files/suricata.service
@@ -0,0 +1,20 @@
+[Unit]
+Description=Suricata IDS/IDP daemon
+After=network.target
+Requires=network.target
+Documentation=man:suricata(8) man:suricatasc(8)
+Documentation=https://redmine.openinfosecfoundation.org/projects/suricata/wiki
+[Service]
+Type=simple
+CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW
+RestrictAddressFamilies=
+ExecStart=/usr/bin/suricata -c /etc/suricata/suricata.yaml eth0
+ExecReload=/bin/kill -HUP $MAINPID
+PrivateTmp=yes
+ProtectHome=yes
+ProtectSystem=yes
+[Install]
+WantedBy=multi-user.target

diff --git a/recipes-security/suricata/files/suricata.service b/recipes-security/suricata/files/suricata.service new file mode 100644 index 0000000..a99a76e --- /dev/null +++ b/recipes-security/suricata/files/suricata.service
@@ -0,0 +1,20 @@
	1	[Unit]
	2	Description=Suricata IDS/IDP daemon
	3	After=network.target
	4	Requires=network.target
	5	Documentation=man:suricata(8) man:suricatasc(8)
	6	Documentation=https://redmine.openinfosecfoundation.org/projects/suricata/wiki
	7
	8	[Service]
	9	Type=simple
	10	CapabilityBoundingSet=CAP_NET_ADMIN CAP_NET_RAW
	11	RestrictAddressFamilies=
	12	ExecStart=/usr/bin/suricata -c /etc/suricata/suricata.yaml eth0
	13	ExecReload=/bin/kill -HUP $MAINPID
	14	PrivateTmp=yes
	15	ProtectHome=yes
	16	ProtectSystem=yes
	17
	18	[Install]
	19	WantedBy=multi-user.target
	20