diff options
| author | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2016-09-07 14:24:54 +0200 |
|---|---|---|
| committer | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2016-09-07 14:30:11 +0200 |
| commit | abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4 (patch) | |
| tree | 40f8f74d64215baf91e766e40cd89c0da0f4eaf1 /nixos/modules/services/networking/firewall.nix | |
| parent | d8625f6d25a6d510b588dfb28538155973806055 (diff) | |
| download | nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar.gz nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar.bz2 nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar.lz nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar.xz nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.tar.zst nixpkgs-abdc5961c3cdf9f5893ea1e91ba08ff5089f53a4.zip | |
Fix starting the firewall
Probably as a result of 992c514a20cf2da897db68169d7dcab721e8c7b7, it was not being started anymore. My understanding of systemd.special(7) (section "Special passive system units") is that the firewall should want network-pre.target, rather than the other way around (not very intuitive...). This in itself does not cause the firewall to be wanted, which is why the wanted-by relationship with multi-user.target is necessary. http://hydra.nixos.org/build/39965589
Diffstat (limited to 'nixos/modules/services/networking/firewall.nix')
| -rw-r--r-- | nixos/modules/services/networking/firewall.nix | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/firewall.nix b/nixos/modules/services/networking/firewall.nix index 138153306dd..254e8c08e7d 100644 --- a/nixos/modules/services/networking/firewall.nix +++ b/nixos/modules/services/networking/firewall.nix @@ -490,7 +490,8 @@ in systemd.services.firewall = { description = "Firewall"; - wantedBy = [ "network-pre.target" ]; + wantedBy = [ "multi-user.target" ]; + wants = [ "network-pre.target" ]; before = [ "network-pre.target" ]; after = [ "systemd-modules-load.service" ]; |