Merge pull request #284627 from Trundle/nftables-ordering

nixos/nftables: remove default systemd dependencies
2024-11-23 15:33:13 +00:00 · 2024-02-09 12:29:24 -05:00 · 2024-02-09 12:29:24 -05:00 · 0cf1e24f32
commit 0cf1e24f32
parent 6ed38373dc fc6c92faf3
1 changed files with 5 additions and 2 deletions
--- a/nixos/modules/services/networking/nftables.nix
+++ b/nixos/modules/services/networking/nftables.nix
@ -252,8 +252,10 @@ in
    networking.nftables.flushRuleset = mkDefault (versionOlder config.system.stateVersion "23.11" || (cfg.rulesetFile != null || cfg.ruleset != ""));
    systemd.services.nftables = {
      description = "nftables firewall";
-      before = [ "network-pre.target" ];
-      wants = [ "network-pre.target" ];
+      after = [ "sysinit.target" ];
+      before = [ "network-pre.target" "shutdown.target" ];
+      conflicts = [ "shutdown.target" ];
+      wants = [ "network-pre.target" "sysinit.target" ];
      wantedBy = [ "multi-user.target" ];
      reloadIfChanged = true;
      serviceConfig = let
@ -315,6 +317,7 @@ in
        ExecStop = [ deletionsScriptVar cleanupDeletionsScript ];
        StateDirectory = "nftables";
      };
+      unitConfig.DefaultDependencies = false;
    };
  };
 }