firewall-init.service 502 Bytes
Newer Older
1 2 3 4 5 6 7 8 9 10
[Unit]
Description=CIRCLE firewall init
After=network.target
#Before=firewall.service

[Service]
User=root
Group=root

Type=oneshot
Desztics Armand committed
11
ExecStart=/bin/bash -c "/bin/systemctl restart openvswitch{% if grains['os'] == 'Debian' or grains['osfinger'] == 'Ubuntu-16.04' %}-switch{%endif%} ; /sbin/ip netns add fw || true; ovs-vsctl del-br firewall || true; /sbin/ip netns exec fw sysctl -f /etc/sysctl.d/60-circle-firewall.conf ; /sbin/ip netns exec fw ip link set lo up"
12 13 14 15

[Install]
WantedBy=multi-user.target