diff options
author | Robert Göhler <github@ghlr.de> | 2024-06-20 16:18:52 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2024-06-20 16:18:52 +0200 |
commit | a3788a3550d636fa783cd3e7ffc55ec3a0d6ca06 (patch) | |
tree | 7abc5288cbc5bb2a33a5d2aeeb6f1de8d992bb65 /docs/configuration/firewall/flowtables.rst | |
parent | 6c1bf9201acd7684397bbcccc3b756107bb8b98b (diff) | |
parent | ea8308a8f137ad1879fb0f6f439fff136a7dd2f6 (diff) | |
download | vyos-documentation-a3788a3550d636fa783cd3e7ffc55ec3a0d6ca06.tar.gz vyos-documentation-a3788a3550d636fa783cd3e7ffc55ec3a0d6ca06.zip |
Merge pull request #1487 from vyos/mergify/bp/sagitta/pr-1486
Fix typos & firewall ip protocol in flowtables.rst (backport #1486)
Diffstat (limited to 'docs/configuration/firewall/flowtables.rst')
-rw-r--r-- | docs/configuration/firewall/flowtables.rst | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/docs/configuration/firewall/flowtables.rst b/docs/configuration/firewall/flowtables.rst index 37462787..917e74cc 100644 --- a/docs/configuration/firewall/flowtables.rst +++ b/docs/configuration/firewall/flowtables.rst @@ -1,4 +1,4 @@ -:lastproofread: 2023-12-26 +:lastproofread: 2024-06-20 .. _firewall-flowtables-configuration: @@ -85,12 +85,12 @@ Provide a description to the flow table. Creating rules for using flow tables: -.. cfgcmd:: set firewall [ipv4 | ipv4] forward filter rule <1-999999> +.. cfgcmd:: set firewall [ipv4 | ipv6] forward filter rule <1-999999> action offload Create firewall rule in forward chain, and set action to ``offload``. -.. cfgcmd:: set firewall [ipv4 | ipv4] forward filter rule <1-999999> +.. cfgcmd:: set firewall [ipv4 | ipv6] forward filter rule <1-999999> offload-target <flowtable> Create firewall rule in forward chain, and define which flowtbale @@ -142,7 +142,7 @@ Explanation Analysis on what happens for desired connection: - 1. First packet is received on eht0, with destination address 192.0.2.100, + 1. First packet is received on eth0, with destination address 192.0.2.100, protocol tcp and destination port 1122. Assume such destination address is reachable through interface eth1. @@ -159,7 +159,7 @@ Analysis on what happens for desired connection: connection state is **established**, then rule 10 is hit, and a new entry in the flowtable FT01 is added for this connection. - 6. All subsecuent packets will skip traditional path, and will be offloaded + 6. All the following packets will skip traditional path, and will be offloaded and will use the **Fast Path**. Checks |