diff --git a/Makefile.am b/Makefile.am
index b5692783..4aaa7807 100644
--- a/Makefile.am
+++ b/Makefile.am
@@ -70,6 +70,8 @@ EXTRA_DIST = \
     extras/console-qr/console-qr.sh \
     extras/sanitizer/asan-build.sh \
     extras/sanitizer/ubsan-build.sh \
+    extras/systemd/fwknopd.service \
+    extras/systemd/fwknopd.tmpfiles.conf \
     extras/clang/scan-build.sh \
     fwknop.spec \
     iphone/main.m \
diff --git a/extras/apparmor/usr.sbin.fwknopd b/extras/apparmor/usr.sbin.fwknopd
index e7caa779..f05254d1 100644
--- a/extras/apparmor/usr.sbin.fwknopd
+++ b/extras/apparmor/usr.sbin.fwknopd
@@ -23,6 +23,7 @@
   /etc/nsswitch.conf r,
   /etc/passwd r,
   /etc/protocols r,
+  @{PROC}/@{pid}/net/ip_tables_names r,
   /root/.gnupg/* rwkl,
   /run/fwknop/ rw,
   /run/fwknop/* rwk,
@@ -30,6 +31,7 @@
   /sbin/xtables-multi rix,
   /usr/bin/gpg rix,
   /usr/sbin/fwknopd mr,
+  /usr/sbin/xtables-nft-multi rix,
   /var/cache/nscd/passwd r,
 
 }