From 89dd732bda385db5bd6f1488d71cb41b9db7279d Mon Sep 17 00:00:00 2001
From: Jamil Bou Kheir <jamil@elbii.com>
Date: Wed, 27 Jan 2021 17:29:42 -0800
Subject: [PATCH] Add CAP_NET_RAW and CAP_DAC_READ_SEARCH capabilities

---
 pkg/ubuntu-20.04/lib/systemd/system/fireguard.service | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/ubuntu-20.04/lib/systemd/system/fireguard.service b/pkg/ubuntu-20.04/lib/systemd/system/fireguard.service
index 3191cfaa0..527b2c774 100644
--- a/pkg/ubuntu-20.04/lib/systemd/system/fireguard.service
+++ b/pkg/ubuntu-20.04/lib/systemd/system/fireguard.service
@@ -7,7 +7,7 @@ After=postgresql.service
 Restart=on-failure
 RestartSec=1
 User=fireguard
-AmbientCapabilities=CAP_NET_ADMIN
+AmbientCapabilities=CAP_NET_ADMIN CAP_NET_RAW CAP_DAC_READ_SEARCH
 EnvironmentFile=/opt/fireguard/config.env
 ExecStartPre=/opt/fireguard/bin/fireguard eval "FgHttp.Release.migrate"
 ExecStart=/opt/fireguard/bin/fireguard start