summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorgoodNETnick <pknet@ya.ru>2021-10-12 22:19:32 +1000
committergoodNETnick <pknet@ya.ru>2021-10-12 22:19:32 +1000
commit8c07fdd896bf74b923b2abc7b6d3d84b4afdf740 (patch)
tree02d58b07904cf632a3109132f33e9ef39a4ffd97
parentd4d50bd9e2bd34aa2bec344bcd653711aacb80db (diff)
downloadvyos-documentation-8c07fdd896bf74b923b2abc7b6d3d84b4afdf740.tar.gz
vyos-documentation-8c07fdd896bf74b923b2abc7b6d3d84b4afdf740.zip
Correction of exclude Inter-VLAN traffic section
-rw-r--r--docs/configuration/policy/examples.rst9
1 files changed, 6 insertions, 3 deletions
diff --git a/docs/configuration/policy/examples.rst b/docs/configuration/policy/examples.rst
index a1d40db4..e99bdfcf 100644
--- a/docs/configuration/policy/examples.rst
+++ b/docs/configuration/policy/examples.rst
@@ -138,12 +138,15 @@ from PBR
.. code-block:: none
+ set firewall group network-group VLANS-GR description 'VLANs networks'
+ set firewall group network-group VLANS-GR network '192.168.188.0/24'
+ set firewall group network-group VLANS-GR network '192.168.189.0/24'
+
set policy route PBR rule 10 description 'VLAN10 <-> VLAN11 shortcut'
- set policy route PBR rule 10 destination address '192.168.188.0/24'
- set policy route PBR rule 10 destination address '192.168.189.0/24'
+ set policy route PBR rule 10 destination group network-group 'VLANS-GR'
set policy route PBR rule 10 set table 'main'
-These commands allow the VLAN10 and VLAN20 hosts to communicate with
+These commands allow the VLAN10 and VLAN11 hosts to communicate with
each other using the main routing table.
Local route