diff options
author | Robert Göhler <github@ghlr.de> | 2023-08-26 21:40:15 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2023-08-26 21:40:15 +0200 |
commit | 1a3aa2dfc42a87aa2786a556fe74457ab8558297 (patch) | |
tree | 443883927128e7bf6df439ac7500ced15c0f57d5 /docs/configuration/firewall/general.rst | |
parent | 0bce1b0cbebbe3083d6063c44d13833f0dfa3910 (diff) | |
parent | b5db744ad62a96606f5f9500b4f88c35382bb5cc (diff) | |
download | vyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.tar.gz vyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.zip |
Merge pull request #1064 from srividya0208/firewall
firewall: correction of default-action for rule-set
Diffstat (limited to 'docs/configuration/firewall/general.rst')
-rw-r--r-- | docs/configuration/firewall/general.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst index 3ef60263..0e172a24 100644 --- a/docs/configuration/firewall/general.rst +++ b/docs/configuration/firewall/general.rst @@ -78,10 +78,11 @@ Where, main key words and configuration paths that needs to be understood: .. note:: **Important note about default-actions:** If default action for any chain is not defined, then the default - action is set to **drop** for that chain. + action is set to **accept** for that chain. Only for custom chains, + the default action is set to **drop**. Custom firewall chains can be created, with commands -``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In Order to use +``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In order to use such custom chain, a rule with **action jump**, and the appropiate **target** should be defined in a base chain. @@ -1502,4 +1503,4 @@ Update geoip database .. opcmd:: update geoip - Command used to update GeoIP database and firewall sets.
\ No newline at end of file + Command used to update GeoIP database and firewall sets. |