[Unit]
Description=Geph4 exit Service
After=network.target nss-lookup.target

[Service]
DynamicUser=true
CapabilityBoundingSet=CAP_NET_BIND_SERVICE
AmbientCapabilities=CAP_NET_BIND_SERVICE
NoNewPrivileges=true
EnvironmentFile=/etc/default/geph4-exit
ExecStart=/usr/bin/geph4-exit $FLAGS $OPTIONS --bridge-secret $BRIDGE_SECRET --exit-hostname $EXIT_HOSTNAME
Restart=on-abort

[Install]
WantedBy=multi-user.target