1 files changed, 5 insertions, 8 deletions

diff --git a/tcpcryptd.service b/tcpcryptd.service
index a9126f634a68..4bfeb575e09e 100644
--- a/tcpcryptd.service
+++ b/tcpcryptd.service
@@ -1,16 +1,13 @@
 [Unit]
-Description=User-space implementation of tcpcrypt
+Description=tcpcrypt daemon for automatic transparent encryption of TCP sessions
+Documentation=man:tcpcryptd(8)
 After=network.target
 
 [Service]
-Type=simple
 EnvironmentFile=/etc/conf.d/tcpcryptd.conf
-ExecStartPre=/usr/sbin/iptables -I INPUT  ! --in-interface lo  -p tcp --sport $PORT -j NFQUEUE --queue-num $NFQUEUE_NUM
-ExecStartPre=/usr/sbin/iptables -I OUTPUT ! --out-interface lo -p tcp --dport $PORT -j NFQUEUE --queue-num $NFQUEUE_NUM
-ExecStart=/usr/bin/tcpcryptd $OPTS -p $NFQUEUE_NUM
-ExecStopPost=/usr/sbin/iptables -D INPUT  ! --in-interface lo  -p tcp --sport $PORT -j NFQUEUE --queue-num $NFQUEUE_NUM
-ExecStopPost=/usr/sbin/iptables -D OUTPUT ! --out-interface lo -p tcp --dport $PORT -j NFQUEUE --queue-num $NFQUEUE_NUM
-KillSignal=SIGINT
+ExecStartPre=/usr/share/tcpcryptd/iptables.sh start
+ExecStart=/usr/bin/tcpcryptd -p "$DIVERT_PORT" -U "$DAEMON_USER" -J "$JAIL_DIR" -f -e
+ExecStopPost=/usr/share/tcpcryptd/iptables.sh stop
 
 [Install]
 WantedBy=multi-user.target