type         = scripted
command      = /usr/bin/nft -f /etc/nftables.conf
stop-command = /usr/bin/nft flush ruleset
restart      = false
depends-on   = local.target
before       = pre-network.target
