diff options
author | Ganawa Juanah <ganawa@juanah.com> | 2022-10-08 16:19:31 -0500 |
---|---|---|
committer | Ganawa Juanah <ganawa@juanah.com> | 2022-10-08 16:19:31 -0500 |
commit | deb95e79ca495beb70d1be87b41f53a6a7dd03e0 (patch) | |
tree | debd004f2d10a29810f829833c460433d6cc5181 /docs/configuration/firewall/general.rst | |
parent | d5bb462db1bd0e51b3e8d13a459c6980f7beed82 (diff) | |
download | vyos-documentation-deb95e79ca495beb70d1be87b41f53a6a7dd03e0.tar.gz vyos-documentation-deb95e79ca495beb70d1be87b41f53a6a7dd03e0.zip |
firewall: correct rule-set interface assignment
Diffstat (limited to 'docs/configuration/firewall/general.rst')
-rw-r--r-- | docs/configuration/firewall/general.rst | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst index cfd7a8ce..8851cc2a 100644 --- a/docs/configuration/firewall/general.rst +++ b/docs/configuration/firewall/general.rst @@ -591,17 +591,17 @@ A Rule-Set can be applied to every interface: * ``out``: Ruleset for forwarded packets on an outbound interface * ``local``: Ruleset for packets destined for this router -.. cfgcmd:: set interface ethernet <ethN> firewall [in | out | local] - [name | ipv6-name] <rule-set> +.. cfgcmd:: set firewall interface <interface> [in | out | local] [name | ipv6-name] <rule-set> + Here are some examples for applying a rule-set to an interface .. code-block:: none - set interface ethernet eth1 vif 100 firewall in name LANv4-IN - set interface ethernet eth1 vif 100 firewall out name LANv4-OUT - set interface bonding bond0 firewall in name LANv4-IN - set interfaces openvpn vtun1 firewall in name Lanv4-IN + set firewall interface eth1.100 in name LANv4-IN + set firewall interface eth1.100 out name LANv4-OUT + set firewall interface bond0 in name LANv4-IN + set firewall interfac vtun1 in name LANv4-IN .. note:: As you can see in the example here, you can assign the same rule-set to |