File: //lib/systemd/system/mde_netfilter_v2.service
[Unit]
Description=Microsoft Defender Netfilter Platform
After=network.target local-fs.target
Requires=mde_netfilter_v2.socket
[Service]
Type=simple
WorkingDirectory=/opt/microsoft/mdatp/sbin/
Environment=LD_LIBRARY_PATH=/opt/microsoft/mdatp/lib/
ExecStart=/opt/microsoft/mdatp/sbin/mde_netfilter
NotifyAccess=main
LimitCORE=infinity
KillMode=process
# Restart on non-successful exits.
Restart=on-failure
# Don't restart if we've restarted more than 3 times in 2 minutes.
StartLimitInterval=120
StartLimitBurst=3
# Security and Hardening parameters
PrivateTmp=true
NoNewPrivileges=true
PrivateDevices=true
[Install]
WantedBy=multi-user.target