cmd/tailscaled: add /run to the allowed paths for iptables.

Signed-off-by: David Anderson <danderson@tailscale.com>
2025-10-21 07:28:45 +00:00 · 2021-01-28 12:57:10 -08:00
parent 1e28207a15
commit de497358b8
1 changed files with 2 additions and 0 deletions
--- a/cmd/tailscaled/tailscaled.service
+++ b/cmd/tailscaled/tailscaled.service
@@ -34,6 +34,8 @@ ProtectHome=true
 ProtectKernelTunables=true
 ProtectSystem=strict
 ReadWritePaths=/etc/
+ReadWritePaths=/run/
+ReadWritePaths=/var/run/
 RestrictSUIDSGID=true
 SystemCallArchitectures=native