diff options
| author | srividya0208 <a.srividya@vyos.io> | 2023-08-25 13:59:09 -0400 |
|---|---|---|
| committer | srividya0208 <a.srividya@vyos.io> | 2023-08-25 14:13:44 -0400 |
| commit | b5db744ad62a96606f5f9500b4f88c35382bb5cc (patch) | |
| tree | 443883927128e7bf6df439ac7500ced15c0f57d5 /docs/configuration/firewall/general.rst | |
| parent | 0bce1b0cbebbe3083d6063c44d13833f0dfa3910 (diff) | |
| download | vyos-documentation-b5db744ad62a96606f5f9500b4f88c35382bb5cc.tar.gz vyos-documentation-b5db744ad62a96606f5f9500b4f88c35382bb5cc.zip | |
firewall: correction of default-action for rule-set
Diffstat (limited to 'docs/configuration/firewall/general.rst')
| -rw-r--r-- | docs/configuration/firewall/general.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst index 3ef60263..0e172a24 100644 --- a/docs/configuration/firewall/general.rst +++ b/docs/configuration/firewall/general.rst @@ -78,10 +78,11 @@ Where, main key words and configuration paths that needs to be understood: .. note:: **Important note about default-actions:** If default action for any chain is not defined, then the default - action is set to **drop** for that chain. + action is set to **accept** for that chain. Only for custom chains, + the default action is set to **drop**. Custom firewall chains can be created, with commands -``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In Order to use +``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In order to use such custom chain, a rule with **action jump**, and the appropiate **target** should be defined in a base chain. @@ -1502,4 +1503,4 @@ Update geoip database .. opcmd:: update geoip - Command used to update GeoIP database and firewall sets.
\ No newline at end of file + Command used to update GeoIP database and firewall sets. |