[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Error including file in nftables.conf

Hello,

On Mon, Oct 03, 2022 at 10:36:53PM -0400, Dave Parker wrote:
> So, I copied /lib/systemd/system/nftables.service to
> /etc/systemd/system/nftables.service, set ProtectHome=false, ran "systemctl
> daemon-reload", and now it works!

This overrides the entire file with your copy in /etc. That will
work, but if a future update changes the original version in /lib
then you may not be aware. You may find it better to only override
the ProtectHome part.

$ sudo rm /etc/systemd/system/nftables.service
$ sudo systemctl edit nftables.service

Add only:

[Service]
ProtectHome=false

Of course, there is good reason for ProtectHome. It seems like you
could easily store this configuration file outside of /root, which
would be more common and would save you all this work.

Cheers,
Andy

-- 
https://bitfolk.com/ -- No-nonsense VPS hosting
Reply to: