Merge pull request #1238 from nicolas-fort/fwall-multiple-updates

Add opmode commands for firewall zones, and add global state-policies…
author: Christian Breunig <christian@breunig.cc> 2024-01-12 17:25:32 +0100
committer: GitHub <noreply@github.com> 2024-01-12 17:25:32 +0100
commit: bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034 (patch)
tree: 52541968f9d8bd7f5d55a33d1509cba9cceb1463 /docs/configuration
parent: 9ccf8010addb66b825463a58cc5547aad2ee6301 (diff)
parent: 85ef13b14fa37b8780f6e6c8220bc54366c72741 (diff)
download: vyos-documentation-bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034.tar.gz
vyos-documentation-bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034.zip
1 files changed, 38 insertions, 0 deletions
diff --git a/docs/configuration/firewall/zone.rst b/docs/configuration/firewall/zone.rst
index 1ab9c630..059b029d 100644
--- a/docs/configuration/firewall/zone.rst
+++ b/docs/configuration/firewall/zone.rst
@@ -123,3 +123,41 @@ written from the perspective of: *Source Zone*-to->*Destination Zone*
       set firewall zone DMZ from LAN firewall name LANv4-to-DMZv4
       set firewall zone LAN from DMZ firewall name DMZv4-to-LANv4
 
+**************
+Operation-mode
+**************
+
+.. opcmd:: show firewall zone-policy
+
+   This will show you a basic summary of zones configuration.
+
+   .. code-block:: none
+
+      vyos@vyos:~$ show firewall zone-policy
+      Zone    Interfaces    From Zone    Firewall IPv4    Firewall IPv6
+      ------  ------------  -----------  ---------------  ---------------
+      LAN     eth1          WAN          WAN_to_LAN
+              eth2
+      LOCAL   LOCAL         LAN          LAN_to_LOCAL
+                            WAN          WAN_to_LOCAL     WAN_to_LOCAL_v6
+      WAN     eth3          LAN          LAN_to_WAN
+              eth0          LOCAL        LOCAL_to_WAN
+      vyos@vyos:~$
+
+.. opcmd:: show firewall zone-policy zone <zone>
+
+   This will show you a basic summary of a particular zone.
+
+   .. code-block:: none
+
+      vyos@vyos:~$ show firewall zone-policy zone WAN
+      Zone    Interfaces    From Zone    Firewall IPv4    Firewall IPv6
+      ------  ------------  -----------  ---------------  ---------------
+      WAN     eth3          LAN          LAN_to_WAN
+              eth0          LOCAL        LOCAL_to_WAN
+      vyos@vyos:~$ show firewall zone-policy zone LOCAL
+      Zone    Interfaces    From Zone    Firewall IPv4    Firewall IPv6
+      ------  ------------  -----------  ---------------  ---------------
+      LOCAL   LOCAL         LAN          LAN_to_LOCAL
+                            WAN          WAN_to_LOCAL     WAN_to_LOCAL_v6
+      vyos@vyos:~$
author	Christian Breunig <christian@breunig.cc>	2024-01-12 17:25:32 +0100
committer	GitHub <noreply@github.com>	2024-01-12 17:25:32 +0100
commit	bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034 (patch)
tree	52541968f9d8bd7f5d55a33d1509cba9cceb1463 /docs/configuration
parent	9ccf8010addb66b825463a58cc5547aad2ee6301 (diff)
parent	85ef13b14fa37b8780f6e6c8220bc54366c72741 (diff)
download	vyos-documentation-bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034.tar.gz vyos-documentation-bbf1ecdef25c9ee12d89ed7a1644bfaa067b9034.zip