| |
| |
| |
| |
| |
| |
| |
| |
|
|
| [Unit] |
| Description=Container %i |
| Documentation=man:systemd-nspawn(1) |
| PartOf=machines.target |
| Before=machines.target |
| After=network.target systemd-resolved.service |
| RequiresMountsFor=/var/lib/machines |
|
|
| [Service] |
| ExecStart=@bindir@/systemd-nspawn --quiet --keep-unit --boot --link-journal=try-guest --network-veth -U --settings=override --machine=%i |
| KillMode=mixed |
| Type=notify |
| RestartForceExitStatus=133 |
| SuccessExitStatus=133 |
| WatchdogSec=3min |
| Slice=machine.slice |
| Delegate=yes |
| TasksMax=16384 |
| |
| |
| |
| |
| DevicePolicy=closed |
| DeviceAllow=/dev/net/tun rwm |
| DeviceAllow=char-pts rw |
| |
| |
| |
| DeviceAllow=/dev/loop-control rw |
| DeviceAllow=block-loop rw |
| DeviceAllow=block-blkext rw |
| |
| |
| |
| DeviceAllow=/dev/mapper/control rw |
| DeviceAllow=block-device-mapper rw |
|
|
| [Install] |
| WantedBy=machines.target |