diff options
author | Robert Göhler <github@ghlr.de> | 2023-08-26 21:40:15 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-08-26 21:40:15 +0200 |
commit | 1a3aa2dfc42a87aa2786a556fe74457ab8558297 (patch) | |
tree | 443883927128e7bf6df439ac7500ced15c0f57d5 | |
parent | 0bce1b0cbebbe3083d6063c44d13833f0dfa3910 (diff) | |
parent | b5db744ad62a96606f5f9500b4f88c35382bb5cc (diff) | |
download | vyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.tar.gz vyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.zip |
Merge pull request #1064 from srividya0208/firewall
firewall: correction of default-action for rule-set
-rw-r--r-- | docs/configuration/firewall/general.rst | 7 | ||||
-rw-r--r-- | docs/configuration/firewall/index.rst | 4 |
2 files changed, 6 insertions, 5 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst index 3ef60263..0e172a24 100644 --- a/docs/configuration/firewall/general.rst +++ b/docs/configuration/firewall/general.rst @@ -78,10 +78,11 @@ Where, main key words and configuration paths that needs to be understood: .. note:: **Important note about default-actions:** If default action for any chain is not defined, then the default - action is set to **drop** for that chain. + action is set to **accept** for that chain. Only for custom chains, + the default action is set to **drop**. Custom firewall chains can be created, with commands -``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In Order to use +``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In order to use such custom chain, a rule with **action jump**, and the appropiate **target** should be defined in a base chain. @@ -1502,4 +1503,4 @@ Update geoip database .. opcmd:: update geoip - Command used to update GeoIP database and firewall sets.
\ No newline at end of file + Command used to update GeoIP database and firewall sets. diff --git a/docs/configuration/firewall/index.rst b/docs/configuration/firewall/index.rst index 94ae6ca5..567e48a0 100644 --- a/docs/configuration/firewall/index.rst +++ b/docs/configuration/firewall/index.rst @@ -3,7 +3,7 @@ Firewall ######## Starting from VyOS 1.4-rolling-202308040557, a new firewall structure -can be found on all vyos instalations. Documentation for most new firewall +can be found on all vyos installations. Documentation for most new firewall cli can be found here: .. toctree:: @@ -12,7 +12,7 @@ cli can be found here: general -Also, for those who haven't update to newer version, legacy documentation is +Also, for those who haven't updated to newer version, legacy documentation is still present and valid for all sagitta version prior to VyOS 1.4-rolling-202308040557: |