From c927186837bce2326d82e4650f3adcc89973cf17 Mon Sep 17 00:00:00 2001
From: Alan Orth <alan.orth@gmail.com>
Date: Tue, 8 Jul 2025 10:37:39 +0300
Subject: [PATCH] roles/common: adjust update-firehol-nftables.service

This service does not actually depend on nftables, at least not in
the systemd sense of dependency. Furthermore, this hard dependency
was causing the service to fail when it restarts nftables at the
end, which causes systemd to start it again and again until it hits
a restarting too quickly error.
---
 roles/common/files/update-firehol-nftables.service | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/roles/common/files/update-firehol-nftables.service b/roles/common/files/update-firehol-nftables.service
index 1ea7e9c..f4d4ccd 100644
--- a/roles/common/files/update-firehol-nftables.service
+++ b/roles/common/files/update-firehol-nftables.service
@@ -1,10 +1,7 @@
 [Unit]
 Description=Update FireHOL lists
-# This service will fail if nftables is not running so we use Requires to make
-# sure that nftables is started.
-Requires=nftables.service
-# Make sure the network is up and nftables is started
-After=network-online.target nftables.service
+# Make sure the network is up
+After=network-online.target
 Wants=network-online.target update-firehol-nftables.timer
 
 [Service]