This unit is provided by:
Options
-
[Install] -
[Service]-
AmbientCapabilities=CAP_SETPCAP CAP_NET_RAW CAP_NET_BIND_SERVICE
-
BusName=org.freedesktop.resolve1 -
CapabilityBoundingSet=CAP_SETPCAP CAP_NET_RAW CAP_NET_BIND_SERVICE -
ExecStart=!!/lib/systemd/systemd-resolved -
ExecStart=!!/usr/lib/systemd/systemd-resolved -
LockPersonalityIntroduced in systemd 235=yes -
MemoryDenyWriteExecuteIntroduced in systemd 231=yes -
NoNewPrivilegesIntroduced in systemd 239=yes -
PrivateDevicesIntroduced in systemd 209=yes -
PrivateTmp=yes -
ProtectClockIntroduced in systemd 245=yes -
ProtectControlGroupsIntroduced in systemd 232=yes -
ProtectHomeIntroduced in systemd 214=yes -
ProtectKernelLogsIntroduced in systemd 244=yes -
ProtectKernelModulesIntroduced in systemd 232=yes -
ProtectKernelTunablesIntroduced in systemd 232=yes -
ProtectProcIntroduced in systemd 247=invisible -
ProtectSystemIntroduced in systemd 214=strict -
Restart=always -
RestartSec=0 -
RestrictAddressFamilies=AF_UNIX AF_NETLINK AF_INET AF_INET6 -
RestrictNamespacesIntroduced in systemd 233=yes -
RestrictRealtimeIntroduced in systemd 231=yes -
RestrictSUIDSGIDIntroduced in systemd 242=yes -
RuntimeDirectory=systemd/resolve -
RuntimeDirectoryPreserve=yes -
SystemCallArchitectures=native -
SystemCallErrorNumber=EPERM -
SystemCallFilter=@system-service -
Type=notify -
User=systemd-resolve -
WatchdogSec=3min
-
-
[Unit]-
After=systemd-sysusers.service -
Before=sysinit.target network.target nss-lookup.target shutdown.target -
Conflicts=shutdown.target -
DefaultDependencies=no -
Description=Network Name Resolution -
Documentation=man:systemd-resolved.service(8) man:org.freedesktop.resolve1(5) https://www.freedesktop.org/wiki/Software/systemd/writing-network-configuration-managers https://www.freedesktop.org/wiki/Software/systemd/writing-resolver-clients -
Wants=nss-lookup.target
-
Additionnal notes
Nothing here.