Works On

Viewing:

Debian 10 (Buster)

Same on:

Other versions:

Debian 11 (Bullseye) Debian 12 (Bookworm) Debian 13 (Trixie) Ubuntu 18.04 LTS (Bionic Beaver) Ubuntu 20.04 LTS (Focal Fossa) Ubuntu 22.04 LTS (Jammy Jellyfish) Ubuntu 24.04 LTS (Noble Numbat)

Details

Size: 73 lines
MD5: 1b0b436832a3318b8996c52a80889009
SHA256: b65ac9e97f7021911506daffe20101d0e00c1dca995b182e7ee338827eb764d1

/etc/systemd/redis-server@.service

# Templated service file for redis-server(1)
#
# Each instance of redis-server requires its own configuration file:
#
#   $ cp /etc/redis/redis.conf /etc/redis/redis-myname.conf
#   $ chown redis:redis /etc/redis/redis-myname.conf
#
# Ensure each instance is using their own database:
#
#   $ sed -i -e 's@^dbfilename .*@dbfilename dump-myname.rdb@' /etc/redis/redis-myname.conf
#
# We then listen exlusively on UNIX sockets to avoid TCP port collisions:
#
#   $ sed -i -e 's@^port .*@port 0@' /etc/redis/redis-myname.conf
#   $ sed -i -e 's@^\(# \)\{0,1\}unixsocket .*@unixsocket /var/run/redis-myname/redis-server.sock@' /etc/redis/redis-myname.conf
#
# ... and ensure we are logging, etc. in a unique location:
#
#   $ sed -i -e 's@^logfile .*@logfile /var/log/redis/redis-server-myname.log@' /etc/redis/redis-myname.conf
#   $ sed -i -e 's@^pidfile .*@pidfile /run/redis-myname/redis-server.pid@' /etc/redis/redis-myname.conf
#
# We can then start the service as follows, validating we are using our own
# configuration:
#
#   $ systemctl start redis-server@myname.service
#   $ redis-cli -s /var/run/redis-myname/redis-server.sock info | grep config_file
#
#  -- Chris Lamb <lamby@debian.org>  Mon, 09 Oct 2017 22:17:24 +0100
[Unit]
Description=Advanced key-value store (%I)
After=network.target
Documentation=http://redis.io/documentation, man:redis-server(1)

[Service]
Type=forking
ExecStart=/usr/bin/redis-server /etc/redis/redis-%i.conf
ExecStop=/bin/kill -s TERM $MAINPID
PIDFile=/run/redis-%i/redis-server.pid
TimeoutStopSec=0
Restart=always
User=redis
Group=redis
RuntimeDirectory=redis-%i
RuntimeDirectoryMode=2755

UMask=007
PrivateTmp=yes
LimitNOFILE=65535
PrivateDevices=yes
ProtectHome=yes
ReadOnlyDirectories=/
ReadWriteDirectories=-/var/lib/redis
ReadWriteDirectories=-/var/log/redis
ReadWriteDirectories=-/var/run/redis-%i

NoNewPrivileges=true
CapabilityBoundingSet=CAP_SETGID CAP_SETUID CAP_SYS_RESOURCE
MemoryDenyWriteExecute=true
ProtectKernelModules=true
ProtectKernelTunables=true
ProtectControlGroups=true
RestrictRealtime=true
RestrictNamespaces=true
RestrictAddressFamilies=AF_INET AF_INET6 AF_UNIX

# redis-server can write to its own config file when in cluster mode so we
# permit writing there by default. If you are not using this feature, it is
# recommended that you replace the following lines with "ProtectSystem=full".
ProtectSystem=true
ReadWriteDirectories=-/etc/redis

[Install]
WantedBy=multi-user.target

Copy & Paste

curl:

curl https://exampleconfig.com/api/v1/config/original/1b0b436832a3318b8996c52a80889009?hint=redis-server@.service

wget:

wget -O redis-server@.service https://exampleconfig.com/api/v1/config/original/1b0b436832a3318b8996c52a80889009?hint=redis-server@.service

For AI Agents

<prompt><role>DevOps agent</role><source url='https://exampleconfig.com/api/v1/config/original/1b0b436832a3318b8996c52a80889009?hint=redis-server@.service' /><config><app>Redis</app><os>Debian 10 (Buster)</os><location>/etc/systemd/redis-server@.service</location><lines>73</lines><md5>1b0b436832a3318b8996c52a80889009</md5><sha256>b65ac9e97f7021911506daffe20101d0e00c1dca995b182e7ee338827eb764d1</sha256></config></prompt>

Paste into Claude, ChatGPT, or any AI assistant.

Install Redis

Alpine Linux

sudo apk add redis

Debian

sudo apt update && sudo apt install redis-server

Ubuntu

sudo apt update && sudo apt install redis-server

File Location

File Path

/etc/systemd/redis-server@.service

FAQ

When should I use this redis-server@.service?

Use it to restore a missing default, confirm what shipped, or diff against your current Redis config.

How do I restore Redis defaults?

Download the file, back up the current one in /etc/systemd/redis-server@.service, replace it, then reload or restart Redis.

Is redis-server@.service safe for production?

It is the vendor default for Debian 10 (Buster). Treat it as a baseline and review security and performance settings before production use.

How does this differ from other OS versions?

Defaults vary by distro and version. This copy matches Debian 10 (Buster).

Can I use this for Redis troubleshooting?

Yes. Diff it against yours to find drift, then restore only the sections you need.

Redis /etc/systemd/redis-server@.service