From 0b0179da39683b0ce9e6634f1c0d6ad7d5a61014 Mon Sep 17 00:00:00 2001
From: Markus Felten <Markus.Felten@gmx.de>
Date: Mon, 1 Sep 2025 20:30:01 +0100
Subject: [PATCH 1/2] chore: add AF_INET AF_INET6 AF_UNIX
 (Service.RestrictAddressFamilies)

---
 pkg/cluster-node.service | 1 +
 1 file changed, 1 insertion(+)

diff --git a/pkg/cluster-node.service b/pkg/cluster-node.service
index 5b43d6eea..f395c3fbf 100644
--- a/pkg/cluster-node.service
+++ b/pkg/cluster-node.service
@@ -38,6 +38,7 @@ ProtectKernelTunables=true
 ProtectKernelModules=true
 ProtectKernelLogs=true
 ProtectControlGroups=true
+RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX
 LockPersonality=true
 RestrictRealtime=true
 RestrictSUIDSGID=true

From 7d8a9084521863831769121e36a0da7263f2b5a6 Mon Sep 17 00:00:00 2001
From: Markus Felten <Markus.Felten@gmx.de>
Date: Mon, 1 Sep 2025 20:47:54 +0100
Subject: [PATCH 2/2] chore: add AF_INET AF_INET6 AF_UNIX
 (Service.RestrictAddressFamilies)