summaryrefslogtreecommitdiff
path: root/docs/configuration/firewall/general.rst
diff options
context:
space:
mode:
authorRobert Göhler <github@ghlr.de>2023-08-26 21:40:15 +0200
committerGitHub <noreply@github.com>2023-08-26 21:40:15 +0200
commit1a3aa2dfc42a87aa2786a556fe74457ab8558297 (patch)
tree443883927128e7bf6df439ac7500ced15c0f57d5 /docs/configuration/firewall/general.rst
parent0bce1b0cbebbe3083d6063c44d13833f0dfa3910 (diff)
parentb5db744ad62a96606f5f9500b4f88c35382bb5cc (diff)
downloadvyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.tar.gz
vyos-documentation-1a3aa2dfc42a87aa2786a556fe74457ab8558297.zip
Merge pull request #1064 from srividya0208/firewall
firewall: correction of default-action for rule-set
Diffstat (limited to 'docs/configuration/firewall/general.rst')
-rw-r--r--docs/configuration/firewall/general.rst7
1 files changed, 4 insertions, 3 deletions
diff --git a/docs/configuration/firewall/general.rst b/docs/configuration/firewall/general.rst
index 3ef60263..0e172a24 100644
--- a/docs/configuration/firewall/general.rst
+++ b/docs/configuration/firewall/general.rst
@@ -78,10 +78,11 @@ Where, main key words and configuration paths that needs to be understood:
.. note:: **Important note about default-actions:**
If default action for any chain is not defined, then the default
- action is set to **drop** for that chain.
+ action is set to **accept** for that chain. Only for custom chains,
+ the default action is set to **drop**.
Custom firewall chains can be created, with commands
-``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In Order to use
+``set firewall [ipv4 | ipv6] [name | ipv6-name] <name> ...``. In order to use
such custom chain, a rule with **action jump**, and the appropiate **target**
should be defined in a base chain.
@@ -1502,4 +1503,4 @@ Update geoip database
.. opcmd:: update geoip
- Command used to update GeoIP database and firewall sets. \ No newline at end of file
+ Command used to update GeoIP database and firewall sets.